CCM Health in Montevideo, MN, has disclosed a network security incident affecting 29,182 individuals by unauthorized access to sensitive data. The breach, occurring between April 3 and April 10, 2023, resulted in the removal of files containing personal and health information. Detailed records including full names, Social Security numbers, medical records, and treatment details were compromised, prompting a comprehensive review.
Following the breach, a thorough examination of the compromised network segments confirmed the presence of extensive personal and health data. Medical record numbers, treatment details, diagnosis codes, and lab results were among the information exposed. On February 12, 2024, the review concluded, leading to notification letters sent to the affected individuals.
In response to the breach, CCM Health has taken steps to mitigate potential harm by providing affected individuals with complimentary single bureau credit monitoring services. This proactive measure aims to offer enhanced protection against identity theft and financial fraud resulting from the unauthorized access. The incident underscores the critical importance of robust cybersecurity measures to safeguard sensitive data and mitigate the risk of unauthorized access to personal and health information.
