Posted On February 8, 2023 Consumer Privacy & Data Breaches
February 8, 2023 – After discovering unusual activity on its computer network on February 3, 2023, Southeast Colorado Hospital District (“SECHD”) posted a notice of a data breach with the Montana Attorney General’s office. According to the filing, an employee’s email account had been compromised, and confidential patient information had been accessed. The incident resulted in consumers’ names, dates of birth, driver’s license numbers, health insurance information, medical treatment and diagnosis information, and Social Security numbers being leaked. Once it was confirmed that there was a data leak, SECHD sent out notification letters to all individuals affected by the data security breach.
The data breach lawyers at Console & Associates, P.C. are actively investigating the SECHD data breach. If you have received a breach notification and are interested in learning about the risks of identity theft and what you can do to protect yourself, we are offering free consultations where we can discuss your legal options for receiving financial compensation from Southeast Colorado Hospital District.
Southeast Colorado Hospital District is a hospital with a 23-bed short-term care capacity, a 40-bed long-term care capacity, a 16-bed Alzheimer’s unit, an outpatient center, and also hospice care. Originally founded in 1969 in Springfield, Colorado, SECHD now generates approximately $25 million in revenue annually and employs over 216 people.
The source of information regarding the data breach comes from the company’s filing with the Montana Attorney General and a notice posted on the company’s website. According to the filing and the notice, SECHD noticed suspicious activity on an employee’s email account on December 6, 2022. Upon further investigation, the company discovered that confidential consumer information had been leaked.
Though it varies among victims, information that has been leaked includes consumers’ names, dates of birth, driver’s license numbers, health insurance information, medical treatment and diagnosis information, and Social Security numbers.
On February 3, 2023, SECHD sent data breach notification letters to all individuals who may have been affected by the attack.
The massive amount of data leaked due to the Southeast Colorado Hospital District data breach has put numerous people at risk of identity theft and fraud. Hackers can take advantage of the information they have obtained and commit numerous crimes, either themselves or by selling the information on the dark web to those willing to commit the crimes.
The magnitude of injury that can result from a malware attack is endless. Reports show that identity theft and fraud in the United States have increased sharply over the last year, with the second half of 2022 seeing a 50% surge in incidents compared to the same time in 2021.
Hackers can use your information to do various fraudulent activities, such as charging your accounts and credit cards without authorization, applying for new cards and loans using your name, and even using your personal data to apply for credit cards. The information needed to apply for a credit card is basic and easy to get, including names, Social Security numbers, and dates of birth—all of which were exposed during the SECHD data breach.
Not only can hackers cause financial damage with your personal data, but they can also commit medical identity theft. If they acquire all of your protected health information, they can use it to receive medical care in your name and leave you with the expenses. Furthermore, this can lead to inaccurate information in your medical history or regarding the medications you take.
The consumer privacy lawyers at Console & Associates, P.C. help customers affected by data and security breaches pursue legal solutions by offering free consultations. By explaining your rights in clear, concise terms, we help you make an informed decision about your next steps. If you are a victim of the Southeast Colorado Hospital District data breach, Console & Associates, P.C. will investigate at no charge to you and offer advice on how to proceed. If you decide to pursue a case, rest assured that we don’t get paid unless you do. If your claim is successful, legal fees are either paid out of the funds recovered or by the defendant. If your claim is not successful, you pay nothing.
To schedule your free consultation, just call (866) 778-5500 today or fill out our secure contact form.
Below is a notice posted on their website:
Southeast Colorado Hospital District (“SECHD”) recently discovered an incident that involved the personal information or protected health information of some of its patients or other individuals associated with SECHD. On December 6, 2022, SECHD became aware of suspicious activity involving the email account of one SECHD employee. Upon identifying the issue, SECHD promptly secured the employee’s email account, launched an internal investigation, and notified law enforcement. SECHD also engaged a leading forensic security firm to assist with its investigation and confirm the security of its email and computer systems.
The investigation determined that an unknown, unauthorized third party gained access to the SECHD employee’s email account at various times between November 23, 2022 and December 5, 2022. SECHD undertook a comprehensive review of the contents of the involved email account and, on January 6, 2023, determined that the email account contained certain individuals’ personal information. The type of information involved varied for each individual but may have included the following: name, Social Security number, driver’s license number, date of birth, medical treatment or diagnosis information, and/or health insurance information.
On February 3, 2023, SECHD mailed written notifications to individuals whose personal information or protected health information was involved in the incident and for whom SECHD has contact information.
Individuals should refer to the notice they will receive in the mail regarding steps they can take to protect themselves. As described in those letters, SECHD has arranged for complimentary identity theft protection services for those individuals whose Social Security numbers and/or driver’s license numbers were involved in the incident.
As a precaution measure, patients and other individuals should remain vigilant to protect against potential fraud and/or identity theft by, among other things, reviewing account statements and monitoring credit reports closely. If individuals detect any suspicious activity on an account, they should promptly notify the financial institution or company with which the account is maintained. They should also promptly report any fraudulent activity or suspected identity theft to proper law enforcement authorities, including the police and their state’s attorney general. Individuals may also wish to review the tips provided by the Federal Trade Commission (“FTC”) on fraud alerts, security/credit freezes, and steps to avoid identity theft. For more information and to contact the FTC, please visit www.ftc.gov/idtheft or call 1-877-ID-THEFT (1-877-438-4338). Individuals may also contact the FTC at: Federal Trade Commission, 600 Pennsylvania Avenue, NW, Washington, DC 20580.