Community Health Centers of Greater Dayton
Your Personal Info Could Be
Exposed Online After
This Hospital Breach
Breach Description
The Community Health Centers of Greater Dayton (CHCGD) experienced a breach of the Health Insurance Portability and Accountability Act (HIPAA) when an unsecured email containing personal patient information was sent to one of their business associates. The email, which was sent on February 2, 2023, was intended for the correct recipient but was not sent in a secure manner, thus constituting a HIPAA violation[1][5].
The email contained personal information regarding 516 dental patients, including names, dates of birth, medical record numbers, appointment dates and times, and a brief description of the reason for the dental visit. The information pertained to the period between October 11, 2022, and December 15, 2022[1][5].
In response to the breach, CHCGD has taken steps to strengthen their safeguards and retrain their staff on the proper procedures for sending emails securely. They are also working with technical support to enhance their security measures. Affected patients are expected to receive a letter in their mailbox with information on how to protect themselves from potential harm resulting from the leak of their personal information[1][5].
The incident highlights the importance of secure communication methods when handling protected health information to prevent unauthorized access and ensure compliance with HIPAA regulations.
Citations:
- https://www.wdtn.com/news/local-news/dayton-medical-organization-subject-to-hipaa-breach/
- https://www.ibm.com/topics/data-breach
- https://hbr.org/2023/05/the-devastating-business-impacts-of-a-cyber-breach
- https://www.ekransystem.com/en/blog/data-breach-investigation-best-practices
- https://dayton247now.com/news/local/hipaa-breach-involving-patient-information-at-commmunity-health-centers-of-greater-dayton
- https://www.trendmicro.com/vinfo/us/security/definition/data-breach
- https://www.cloudmask.com/blog/data-breaches-threats-and-consequences
- https://www.hipaajournal.com/ransomware-attack-announced-by-codman-square-health-center/
- https://usa.kaspersky.com/resource-center/definitions/data-breach
- https://bigid.com/blog/the-costly-impact-of-a-data-breach-on-individuals/
- https://www.communityhealthdayton.org/news-archives.php
- https://www.fortinet.com/resources/cyberglossary/data-breach
- https://www.nedigital.com/en/blog/data-breach-consequences
- https://www.wdtn.com/as-seen-on-2-news/criminal-hacking-group-breaches-data-including-premier-health/
- https://www.ftc.gov/business-guidance/resources/data-breach-response-guide-business
- https://www.fisglobal.com/en/insights/merchant-solutions-worldpay/article/how-the-consequences-of-a-data-breach-threaten-small-businesses
- https://www.daytondailynews.com/news/local-hospitals-among-hundreds-with-multiple-privacy-complaints/ZwFqMJX5tLqziWCkVevOhO/
- https://www.forbes.com/advisor/business/what-is-data-breach/
- https://securityintelligence.com/articles/long-term-impacts-security-breach/
- https://www.wcpo.com/news/local-news/mercy-health-patients-among-giant-data-breach-affecting-8-9-million-people-company-says
- https://commission.europa.eu/law/law-topic/data-protection/reform/rules-business-and-organisations/obligations/what-data-breach-and-what-do-we-have-do-case-data-breach_en
- https://www.theamegroup.com/security-breach/
- https://www.idstrong.com/sentinel/112k-records-stolen-from-population-healthec/
- https://www.cloudflare.com/learning/security/what-is-a-data-breach/
- https://www.securitymagazine.com/articles/98325-the-impact-of-a-data-breach