Southern Bone & Joint Specialists, PA recently informed patients of a data security incident involving unauthorized access to personal health information (PHI). The incident was discovered on May 7, 2024, when suspicious activity was detected within the company’s email system. After investigating, it was determined that certain patient data, including names, dates of birth, diagnosis codes, insurance policy numbers, and phone numbers, had been accessed by an unauthorized party. While there is no evidence of misuse of the data, the company is notifying affected individuals as a precautionary measure.
Upon identifying the breach, Southern Bone took immediate action to secure its email environment and engaged a cybersecurity firm to assess the situation. The investigation confirmed that the compromised data varied by individual and that no financial account information was exposed. Southern Bone is committed to enhancing its security practices to prevent such incidents in the future, including implementing stronger monitoring tools and continuing to work with cybersecurity experts.
As part of its response, Southern Bone is offering affected individuals complimentary credit monitoring services for twelve months through Cyberscout, a TransUnion company. These services include alerts for any changes to credit files, providing an added layer of protection. The company also encourages individuals to take additional protective measures, such as placing fraud alerts on credit files and reviewing financial statements for unusual activity.
Southern Bone is providing a dedicated helpline to assist individuals with questions regarding the breach and the protective steps available to them. The company remains committed to safeguarding its patients’ personal information and ensuring privacy and security. It sincerely regrets any concern or inconvenience caused by this incident and is taking all necessary steps to strengthen its data protection practices moving forward.
Reference:
