Geisinger Health System recently made a disturbing discovery regarding a data breach that affected the personal information of over one million patients. The breach was linked back to a former employee of Nuance Communications Inc., an external vendor that provided IT services to Geisinger. Shockingly, the ex-employee accessed the data just two days after being terminated from the company.

Immediately after uncovering the breach, Geisinger took swift action by informing Nuance about the situation and permanently revoking the former employee’s access to their records. A thorough investigation was launched, and law enforcement authorities were brought in to handle the matter.

Nuance’s investigation into the incident revealed that the former employee had potentially accessed and obtained various personal details of Geisinger patients. This compromised information included names, dates of birth, addresses, medical record numbers, phone numbers, and other sensitive data. Luckily, financial information, Social Security numbers, and insurance details were not accessed during the breach.

Upon learning of the breach, law enforcement officials requested Nuance to delay notifying the affected patients in order to prevent any interference with their investigation. Subsequently, the former employee was apprehended and is currently facing federal charges related to the data breach.

Jonathan Friesen, Geisinger’s Chief Privacy Officer, expressed deep concern and regret over the incident, emphasizing the organization’s commitment to prioritizing patient privacy and security. Friesen stated, “Our patients’ and members’ privacy is a top priority, and we take protecting it very seriously. We continue to work closely with the authorities on this investigation, and while I am grateful that the perpetrator was caught and is now facing federal charges, I am sorry that this happened.”

To support the affected patients, Geisinger has started notifying them about the breach and is advising them to carefully review the information provided in the notice. Patients are encouraged to contact the dedicated support line at 855-575-8722 from Monday to Friday, 9 a.m. to 9 p.m. Eastern Time (excluding major U.S. holidays), providing the engagement number B124651 when calling. Additionally, patients are advised to scrutinize their health plan statements thoroughly and report any unauthorized services to their health insurer promptly to prevent potential misuse of the compromised data.

Geisinger’s proactive approach not only aims to assist affected patients but also demonstrates the organization’s unwavering commitment to safeguarding patient information and preventing similar incidents in the future. The collaboration with law enforcement agencies and the ongoing investigation underscore Geisinger’s dedication to upholding the trust and security of their patients’ personal information.

As the situation unfolds, Geisinger continues to work diligently to address the aftermath of the data breach and ensure that patients receive the support and guidance they need. The organization remains focused on enhancing data security measures to prevent such breaches from occurring again in the future.

Извор линк