Quentis Jones reports that Jefferson Medical Associates has issued a warning to a small group of their patients after a recent data breach of their systems.
According to the release, on June 1 an unauthorized individual not affiliated with JMA accessed a database containing a limited history of prescriptions and other information for a small percentage of patients.
Based on the investigation, the individual unlawfully copied one of the practice’s databases which included patient names, dates of birth, social security numbers, addresses, and phone numbers as well as limited prescription information. Drug names, dosages, and refill quantities were also compromised.
JMA has since secured the database, disabled the ability for remote connections, and is implementing additional data security measures to prevent future incidents.
The release also revealed that int he course of the investigation, they learned that
other remote connections were made to this database from unknown sources at various times between March 25, 2014, and June 1, 2016. JMA has not been able to determine whether any of these other connections actually resulted in any acquisition, access, use, or disclosure of patient information, but it is possible.”
Read more on WDAM. The full notification can be found on JMA’s web site.