The Unified Government of Wyandotte County and the Kansas City Fire Department issued a preliminary notice regarding a cybersecurity incident detected on May 21, 2024. Upon discovering the breach, immediate measures were taken to contain the attack and restore system access to ensure the fire department could continue its essential services to the community. An investigation was launched to assess the nature and scope of the unauthorized activity, which confirmed that an unknown third party had infiltrated the network and exfiltrated certain files.
Preliminary findings from the investigation indicated that the compromised files contained sensitive information, including names and data related to the EMS department, specifically EMS medical records. While the investigation is ongoing and a thorough review of the affected files is in progress, it remains unclear how many individuals were affected and what specific information was exposed or stolen. Once the review is completed and contact information is verified, the fire department plans to notify those impacted by the breach.
In response to the incident, the fire department is reviewing its current security policies and procedures to identify vulnerabilities. Additionally, they are committed to implementing enhanced security measures to minimize the risk of similar breaches in the future. To comply with the HIPAA Breach Notification Rule, the fire department has reported the data breach to the HHS’ Office for Civil Rights, indicating that at least 501 individuals may have been affected.
As the investigation continues, updates will be provided to the public regarding the breach and its implications. The fire department’s proactive approach in addressing the incident highlights the importance of cybersecurity in protecting sensitive data within public service organizations. The ongoing efforts to assess and improve security measures aim to restore trust and ensure the safety of community members’ information.
Reference:
