Daniel Chang reports:
Jessie Trice Community Health Center, a nonprofit system of health clinics primarily serving the uninsured in Miami-Dade, reported on Monday a data breach by “an identity theft criminal operation” that targeted patients’ personal information, including names, birth dates and Social Security numbers.
Read more on Miami Herald. The breach was not discovered by JTCHC’s internal controls, as this statement posted inside their website today makes clear:
Jessie Trice Community Health Center, Inc. has been notified by law enforcement authorities of a data breach caused by an identity theft criminal operation that targeted the personal information of some of our patients. The discovery was made in late July and is currently under investigation by the FBI and IRS.
The theft of personal information included patients’ names, dates of birth and social security numbers. No medical records were obtained or have been compromised.
The leadership of Jessie Trice Community Health Center, Inc. deeply regrets this incident and is working vigorously and diligently assessing how to mitigate future risks to all patients and has implemented new procedures and protocols to protect patient information so that this type of theft cannot reoccur.
The 7,888 potentially compromised patients of Jessie Trice Community Health Center, Inc. have been notified of the data breach and immediate action steps are underway to ensure their protection. The organization has retained a leading data breach response vendor to work with our patients through this process.
For additional information about the JTCHC data breach, contact our corporate office at (305) 636-3335. Media inquiries are to be directed to Bernadette Morris at (305) 948-8063, ext. 201.
Thank you,
Annie Neasman
President & CEO