The Heart of Texas Behavioral Health Network is alerting current and former patients about a data breach that occurred on October 22, potentially compromising their medical privacy. Unauthorized access to the nonprofit’s network during a network security incident allowed an external party to obtain sensitive information, including names, birthdates, medical record numbers, health insurance policy details, and medical and treatment information. While the organization believes there’s no indication of individual information misuse, it is taking proactive steps to notify and protect those affected. The nonprofit has secured its network and engaged a specialized third-party forensic incident response firm to investigate the breach.
In addition to providing written notices to potentially affected individuals, the Heart of Texas Behavioral Health Network is offering identity theft protection services at no cost to help patients safeguard their information. The breach comes amid increased concerns about healthcare data security and privacy, emphasizing the importance of robust cybersecurity measures for organizations handling sensitive medical information. This incident underscores the ongoing threat landscape and the need for healthcare entities to remain vigilant in implementing effective cybersecurity measures to protect patient data.
Separately, seniors in Central Texas are receiving notices regarding another healthcare data breach unrelated to the Behavioral Health Network. The U.S. Center for Medicare and Medicaid Services is investigating a data breach that occurred from May 27 to 31, involving an unauthorized party gaining access to the network of Maximus, a Medicare contractor. The exposed information includes names, Social Security and tax identification numbers, birth dates, drivers license numbers, medical history, healthcare provider and prescription details, and health insurance and benefits information.