DataBreaches.Net

Menu
  • About
  • Breach Notification Laws
  • Privacy Policy
  • Transparency Report
Menu

Froedtert Health notifies patients after computer with patient information infected by virus

Posted on February 14, 2013 by Dissent

Milwaukee-based Froedtert Health has issued a notice on its web site:

Froedtert Health and our affiliates are committed to maintaining the privacy and security of the personal information provided to us. Our affiliates include Froedtert Hospital, Community Memorial Hospital of Menomonee Falls, St. Joseph’s Community Hospital of West Bend, Froedtert Health Medical Group (also known as the West Bend Clinic and formerly known as Medical Associates of Menomonee Falls), West Bend Surgery Center, and Kettle Moraine Anesthesiology.  Regrettably, the purpose of this notice is to inform you of an incident involving some of that information.

On December 14, 2012, we learned that a computer virus may have allowed an unauthorized person to access a Froedtert Health employee’s work computer account.  We found no evidence that any unauthorized person accessed any personal information or medical records.  As a precaution, we felt it was important to tell you this occurred.

We immediately began an investigation and hired an expert computer forensics company to examine what happened.  The forensics company could not definitively rule out the possibility the virus was able to obtain information stored in the employee’s work computer account. A file in the employee’s work computer account contained some patients’ information, including names, addresses, telephone numbers, dates of birth, medical record numbers, names of health insurers, diagnoses, other clinical information, and in some instances Social Security numbers. Financial information was not stored in any files in the employee’s work computer account.

We have set up a call center with a toll-free help line for patients who have questions. The phone number is 1-855-770-0006. When prompted, please enter the following 10-digit reference code:  5764020813.  The call center is staffed weekdays from 8 am until 5 pm Central time. Also, if you have concerns about this situation and have not received a letter from us by March 5, 2013, please call the help line with your questions.

We deeply regret any concerns this may cause our patients.  Protecting the privacy and confidentiality of the personal information we maintain always has been one of our highest priorities. Unfortunately, such computer attacks are increasingly common, affecting organizations worldwide. We continually update our computer virus protection and are conducting a comprehensive internal review of our information security practices and procedures to help prevent such events in the future.

Jesse Garza of the Journal Sentinel reports that 43,000 patients may be affected and that fewer than 3% of the files on the employee’s computer contained Social Security numbers.

Looking at the Froedtert statement again, though, I just realized that although they say they discovered the problem in December, they don’t state when the system actually got infected or how it get infected.  And once again, we  should note the difference between their statement that “we found no evidence”  (of access) vs. their forensics firm saying “We can’t definitively rule out access.”  Absence of evidence is not …. you know the rest.


Related:

  • Missouri Adopts New Data Breach Notice Law
  • Qantas obtains injunction to prevent hacked data’s release
  • Ransomware attack disrupts Korea's largest guarantee insurer
  • Theft from Glasgow’s Queen Elizabeth University Hospital sparks probe
  • Global operation targets NoName057(16) pro-Russian cybercrime network in Operation Eastwood
  • More than 100 British government personnel exposed by Ministry of Defence data leak
Category: Health Data

Post navigation

← Plaintiffs failed to demonstrate injury, so please toss the case – Sony
UK: ICO urges more care with personal data as Nursing and Midwifery Council receives £150,000 penalty →

Now more than ever

"Stand with Ukraine:" above raised hands. The illustration is in blue and yellow, the colors of Ukraine's flag.

Search

Browse by Categories

Recent Posts

  • Singapore Facing ‘Serious’ Cyberattack by Espionage Group With Alleged China Ties
  • Missouri Adopts New Data Breach Notice Law
  • Qantas obtains injunction to prevent hacked data’s release
  • Ransomware attack disrupts Korea’s largest guarantee insurer
  • Theft from Glasgow’s Queen Elizabeth University Hospital sparks probe
  • Global operation targets NoName057(16) pro-Russian cybercrime network in Operation Eastwood
  • More than 100 British government personnel exposed by Ministry of Defence data leak
  • New TeleMessage SGNL Flaw Is Actively Being Exploited by Attackers
  • North Country Healthcare responds to Stormous’s claims of a breach
  • Gladney Adoption Center had serious data exposures in the past few months. What will they do to prevent more?

No, You Can’t Buy a Post or an Interview

This site does not accept sponsored posts or link-back arrangements. Inquiries about either are ignored.

And despite what some trolls may try to claim: DataBreaches has never accepted even one dime to interview or report on anyone. Nor will DataBreaches ever pay anyone for data or to interview them.

Want to Get Our RSS Feed?

Grab it here:

https://databreaches.net/feed/

RSS Recent Posts on PogoWasRight.org

  • 𝐔𝐠𝐚𝐧𝐝𝐚 𝐨𝐫𝐝𝐞𝐫𝐬 𝐆𝐨𝐨𝐠𝐥𝐞 𝐭𝐨 𝐫𝐞𝐠𝐢𝐬𝐭𝐞𝐫 𝐚𝐬 𝐚 𝐝𝐚𝐭𝐚‑𝐜𝐨𝐧𝐭𝐫𝐨𝐥𝐥𝐞𝐫 𝐰𝐢𝐭𝐡𝐢𝐧 𝟑𝟎 𝐝𝐚𝐲𝐬 𝐚𝐟𝐭𝐞𝐫 𝐥𝐚𝐧𝐝𝐦𝐚𝐫𝐤 𝐩𝐫𝐢𝐯𝐚𝐜𝐲 𝐫𝐮𝐥𝐢𝐧𝐠.
  • Meta investors, Zuckerberg reach settlement to end $8 billion trial over Facebook privacy violations
  • ICE is gaining access to trove of Medicaid records, adding new peril for immigrants
  • Microsoft can’t protect French data from US government access
  • Texas Enacts Electronic Health Record Data Localization Law
  • Upstate NY county clerk again refuses to enforce Texas abortion judgment
  • Attorney General James Leads Coalition Urging Congress to Protect Americans from Masked ICE Agents

Have a News Tip?

Email: Tips[at]DataBreaches.net

Signal: +1 516-776-7756

Contact Me

Email: info[at]databreaches.net

Mastodon: Infosec.Exchange/@PogoWasRight

Signal: +1 516-776-7756

DMCA Concern: dmca[at]databreaches.net
© 2009 – 2025 DataBreaches.net and DataBreaches LLC. All rights reserved.