Green Diamond Resource Company, a forest products company based in Washington, recently reported a data breach to the HHS’ Office for Civil Rights, affecting the protected health information of 8,172 individuals. The breach occurred around June 27, 2023, when suspicious activity was detected in the company’s network. Prompt action was taken, and with the assistance of third-party cybersecurity experts, it was determined that unauthorized access had occurred between June 26 and 27, 2023.
Following the discovery of the breach, Green Diamond Resource Company conducted a thorough review of the affected files, which was completed on February 23, 2024. Although no evidence was found to suggest any access to or theft of sensitive data, certain personal information of individuals was exposed. This included details such as names, dates of birth, medical information, health insurance information, Social Security numbers, financial account information, and more.
In response to the breach, Green Diamond Resource Company has taken proactive steps to strengthen its privacy and security protocols. The company has reviewed and reinforced its policies and procedures related to data privacy and security. Additionally, it has implemented additional safeguards to prevent similar breaches from occurring in the future. Green Diamond remains committed to prioritizing the confidentiality, privacy, and security of the information entrusted to its care.
