MCALLEN, Texas, Oct. 22, 2021 /PRNewswire/ — McAllen Surgical Specialty Center, Ltd. (“McAllen Surgical”) is providing notice of an incident that could affect the privacy of information of certain employees and patients for whom it provided medical care. While McAllen Surgical is unaware of any actual or attempted misuse of this information, McAllen Surgical takes this incident very seriously and are providing information about the incident, their response to it, and resources available to individuals to help protect their information, should they feel it appropriate to do so.
What Happened? On May 14, 2021, McAllen Surgical discovered encrypted files on one of its servers. McAllen Surgical immediately launched an investigation, with the assistance of third-party forensic specialists, to determine the nature and scope of the activity. McAllen Surgical’s investigation determined that an unauthorized actor gained access to certain computers and servers between May 12, 2021 and May 14, 2021. McAllen Surgical then worked diligently to identify which computers were impacted, what information was stored on those computers, and to whom the information on those computers relates. On July 22, 2021, as part of the investigation, McAllen Surgical determined it was unable to rule out whether any computers or servers housing patient information were accessed. Therefore, although McAllen Surgical has no indication that any patient information was actually viewed or taken, they are providing notice in an abundance of caution because sensitive information was present on the network at the time of the unauthorized access.
What Information Was Involved? McAllen Surgical conducted a thorough review of the relevant systems to identify the types of information stored there and to whom it related. McAllen Surgical’s review determined that sensitive information was present in the affected systems and it is possible that this information could have been accessed or acquired by an unauthorized actor. While the specific data elements vary for each potentially affected individual, the scope of information potentially involved includes: name; address; Social Security number; health insurance information; date of service; provider name; medical record number; and patient number.
How Will Individuals Know If They Are Affected By This Incident? McAllen Surgical is mailing notice letters to the individuals identified as impacted. If an individual did not receive a letter but would like to know if they are affected, they may call McAllen Surgical’s dedicated assistance line, detailed below.
What McAllen Surgical is Doing. McAllen Surgical takes the confidentiality, privacy, and security of information in its care seriously. Upon discovery, McAllen Surgical immediately commenced an investigation to confirm the nature and scope of the incident. In response to this incident, McAllen Surgical is reviewing and enhancing existing policies and procedures.
Whom Should Individuals Contact For More Information? If individuals have questions or would like additional information, they may call McAllen Surgical’s dedicated assistance line, 866-581-1076 between the hours of 8:00 a.m. and 10:00 p.m., Central Time, Monday through Friday.
For more information on what you can do if you think you were impacted by this incident, read the full press release on PRNewswire.
SOURCE McAllen Surgical Specialty Center, Ltd.