Meridian Internal Medicine, P.A., located in Asheboro, North Carolina, has reported a cybersecurity incident that was first detected on March 18, 2024. The healthcare revenue cycle management company identified suspicious activity within its network and promptly took measures to secure the system. Recognizing the potential impact of the incident, Meridian Internal engaged a specialized cybersecurity firm to investigate the nature and scope of the breach, ensuring that all necessary steps were taken to protect sensitive information.
Following the investigation, it was confirmed that an unauthorized actor had accessed certain files and data stored within the network. Meridian Internal undertook a detailed reconstruction and review of the data to determine whose information was affected. The organization began notifying impacted individuals in waves as valid contact information was assembled, starting with those whose sensitive data was identified on May 22, 2024.
In response to the incident, Meridian Internal has demonstrated a commitment to enhancing the security and privacy of personal information. The organization moved swiftly to assess the situation, implement security measures, and notify potentially affected individuals. Although there is no evidence of actual misuse of the compromised personal information, Meridian Internal is offering complimentary credit monitoring and identity theft restoration services to those affected.
Additionally, Meridian Internal has taken proactive steps to bolster its cybersecurity posture. This includes resetting passwords for all accounts, updating policies and procedures related to security risk management, and enhancing both physical and technical safeguards. The organization has also focused on training its workforce and implementing regular evaluations to ensure ongoing security improvements, reflecting a strong commitment to preventing similar incidents in the future.