BayMark Health Services, Inc. reported a data breach to the California Attorney General, revealing that an unauthorized party gained access to sensitive data within the company’s computer network. The breach occurred between September 24 and October 14, 2024, and was discovered on October 11 when BayMark noticed disruptions in its IT systems. Upon identifying the breach, the company acted swiftly to secure its systems and initiated an investigation, enlisting third-party forensic experts. Law enforcement was also notified to assist in the ongoing inquiry.
The breach compromised a wide range of personal and sensitive information, including names, Social Security numbers, birthdates, driver’s license numbers, insurance details, treatment records, and in some cases, the names of healthcare providers. This exposure has potentially affected a large number of individuals who received services through BayMark’s network. BayMark’s thorough review of the compromised files confirmed that various pieces of personal data were accessed by unauthorized parties, leading to the breach.
In response to the incident, BayMark sent formal notification letters to all affected individuals, providing details of the breach and offering assistance in protecting their identities. The company highlighted the severity of the breach and outlined steps it had taken to strengthen its security measures to prevent future incidents. This included the implementation of additional protection methods to safeguard sensitive data moving forward.
As part of its efforts to support those affected by the breach, BayMark is offering free, one-year access to Equifax Complete™ Premier, a comprehensive credit monitoring and identity theft protection service. The service includes features such as 3-bureau credit monitoring, fraud alerts, identity restoration services, and up to $1 million in identity theft insurance. BayMark has also advised individuals to remain vigilant by reviewing their credit reports and financial accounts for any signs of unusual activity. The company continues to work on enhancing its cybersecurity protocols to better protect patient data.
.
Reference:
