Adam Smeltz reports:
An online security breach might have compromised the credit-card information of several thousand patients at a Bloomfield-based medical group.
Partners in Nephrology & Endocrinology on Liberty Avenue confirmed the breach Wednesday, saying someone hacked into a vendor’s systems that process credit-card payments for the specialist practice.
Read more on TribLive.
A detailed statement on PINE’s website explains that their login credentials to their vendor’s payment processor system were compromised, which gave the attacker access to patients’ credit card numbers, card expiration dates, and in some cases, addresses. CVV codes and PINs were not involved, nor was any patient information on PINE’s own computers involved.
In response to the breach, the payment processor, not named but described as one of the largest in the country, has altered its systems globally to truncate credit card numbers instead of using full numbers. The company also notified card issuers of the breach and affected patients’ card numbers.
You can read PINE’s detailed notice to patients here.