Texas Spine Consultants (TSC), a full-service orthopedic center specializing in spine-related conditions, has recently disclosed a data breach that may impact the personal and protected health information of some patients. The cybersecurity incident was detected around May 13, 2024, when unusual activity was observed in an employee’s email account. In response, TSC promptly engaged a specialized third-party cybersecurity firm to secure the compromised email account and conduct a thorough forensic investigation to assess the nature and scope of the breach.
The forensic investigation revealed that unauthorized access had occurred, leading to the potential exposure of sensitive patient data. Specifically, the compromised information included patients’ names, dates of birth, medical information, and health insurance details. Importantly, TSC has confirmed that no social security numbers, financial account information, or credit/debit card information were affected. To ensure transparency and assist those impacted, TSC is mailing notifications to potentially affected individuals and providing resources to help them understand the situation.
In light of the breach, TSC has taken significant measures to bolster its cybersecurity protocols. Following the discovery of the incident, the organization swiftly changed all user credentials and implemented enhanced security measures, including multi-factor authentication (MFA). TSC is committed to preventing similar incidents in the future and is actively reviewing its security practices to mitigate risks.
To support individuals potentially impacted by the breach, TSC is offering complimentary credit monitoring services, Dark Web monitoring, and identity theft protection services for a period of twelve months. The organization encourages those affected to take advantage of these resources and remains dedicated to safeguarding patient information. For additional information and assistance, TSC has established a dedicated toll-free helpline for individuals seeking support regarding the incident.
