From their press release earlier today:
Golden Valley Health Centers has become aware of a data security incident that may have resulted in the inadvertent exposure of patients’ health information. Although at this time, there is no evidence that patient information was actually accessed or viewed, or any indication of anyone’s information being misused, Golden Valley Health Centers has taken steps to notify those who may have been affected by this incident, including sending letters to anyone whose information may have been exposed.
On March 3, 2020, we determined that a limited number of patients’ information may have been contained in an email account that was accessed by an unknown, unauthorized third party. After identifying potentially suspicious activity, our IT staff immediately began an investigation and engaged computer forensic experts to determine if any information was impacted. After examining the accounts, the investigation determined that medical information, possibly including patients’ billing and insurance information, patient referral information, and appointment records may have been contained in an impacted e-mail account.
While there is no indication that an unauthorized party accessed or viewed patient information or evidence of patient information being misused, Golden Valley Health Centers remains committed to protecting patients’ information and has taken steps to prevent a similar event from occurring in the future, including but not limited to employee education and training, reviewing and revising information security, as well as privacy policies and procedures. Letters sent to potentially impacted patients include additional information about what occurred and a toll-free number where patients can learn more about the incident. To answer any questions, you may have on this incident, please contact the following number (833) 570-0383. This call center is available Monday through Friday, between 8:00 AM to 8:00 PM Central Time. You may also request a copy of the letter that was sent to the potentially impacted patients.
The privacy and security of patient information continues to be top priority for Golden Valley Health Centers and we deeply regret any inconvenience or concern this incident may have caused you.
So based on the above, we do not know when the attack occurred or how many patients were impacted.