Associates in Eye Care notified HHS on May 16 about an incident affecting 971 patients.
DataBreaches.net could find nothing on their web site about the incident.
The Prince William Times ran a small item that may be related, but the following incident occurred in Virginia, and the HHS report gave Kentucky as the state. Associates in Eye Care has locations in a number of states.
Associates in Eyecare robbed
On April 28 at 4:28 a.m., Prince William County Police officers responded to the Associates in Eyecare located at 10338 Bristow Court in Gainesville to investigate an alarm activation. Once at the location, the front door to the Associates in Eyecare and a rear window to the Pizza Hut were found damaged. Upon reviewing video surveillance footage, an unknown male suspect was seen walking into the store and stealing multiple sunglasses from a display case. The suspect then fled prior to officers arriving at the location. A police K-9 was used to search for the suspect. During the search, the accused, Zachary Stanley Mosser, 25, of Edinburg was located and detained without incident in a nearby shed. Following the investigation Mosser was arrested and charged with two counts of burglary and two counts of grand larceny. He is being held without bond with a court date of June 23.
The news report makes no mention of any devices or patient data stolen, but the report to HHS indicates that incident involved theft of “Laptop, other portable device.” If they apprehended the suspect quickly, perhaps the devices were recovered without ever having been accessed? Or is this a different and unrelated incident?