Docs Medical Inc
Your Personal Info Could Be
Exposed Online After
This Hospital Breach
Breach Description
DOCS Medical Group, also known as DOCS Medical Inc., experienced a cyber-attack on September 7, 2022, which was identified as a ransomware attack. The attack targeted a server containing various types of patient information, including demographic details, medical history, Social Security numbers, insurance information, and financial data. However, the electronic medical record and billing systems were not affected by this incident. The company was fully operational throughout the event[2][4].
DOCS Medical Group took immediate action by engaging Vancord, an IT security firm, to investigate the matter. The investigation concluded on October 18, 2022, and DOCS began preparing a list of affected patients. They have notified relevant state and federal authorities and are working with outside advisors to evaluate ways to enhance their cybersecurity measures[2].
Affected individuals were provided with written notice and a “Reference Guide” on how to protect their identity, including obtaining credit reports and implementing credit freezes. DOCS Medical Group also offered 24 months of credit monitoring at no cost to those impacted. The deadline to enroll in this service was February 2, 2023[2].
For more information or assistance, affected patients were advised to contact DOCS Medical Group via a toll-free number or email provided in their notification[2].
Citations:
- https://www.ctinsider.com/news/article/DOCS-Urgent-Care-CT-billing-fraud-settlement-17657035.php
- https://www.mass.gov/doc/assigned-data-breach-number-28555-docs-medical-inc/download
- https://dockets.justia.com/docket/connecticut/ctdce/3:2023cv00200/153115
- https://www.databreaches.net/docs-medical-group-discloses-september-ransomware-incident/
- https://patch.com/connecticut/across-ct/docs-urgent-care-settles-4-2-million-settle-claim-allegations
- https://ctmirror.org/2023/10/02/ct-prospect-medical-holdings-hospital-cyberattack-manchester-rockville-waterbury/
- https://oig.hhs.gov/fraud/cia/agreements/JaseepSidanaMD.pdf
- https://www.courant.com/2023/10/01/a-deeper-look-at-cyberattacks-at-3-ct-hospitals-shame-on-us-if-we-dont-learn-from-it/
- https://www.turkestrauss.com/2022/11/28/docs-medical-group-data-breach-investigation/
- https://www.idstrong.com/sentinel/health-organization-records-stolen-via-welltoks-moveit/
- https://stacker.com/connecticut/biggest-health-care-data-breaches-you-should-know-about-connecticut
- https://www.justice.gov/usao-ct/pr/connecticut-physician-and-urgent-care-practice-pay-over-42-million-settle-false-claims
- https://www.ctpublic.org/news/2023-11-16/over-100k-ct-residents-data-stolen-in-prospect-hospitals-breach
- https://www.law360.com/articles/1598323/2nd-class-action-suit-blames-health-co-for-data-breach