HealthEC LLC a New Jersey based health technology company reported a data breach that impacted nearly 4.5 million patients across the country.
An unauthorized party gained access to their computer systems between July 14th and July 23, 2023. They were able to obtain private financial and medical records.
The exposed data contained a variety of names, SSNs, taxpayer ID numbers, health insurance information, Medicare and Medicaid IDs, benefits and claims information, medical record numbers.
Health EC began notifying their patients on December 22, 2023 with the following statement, “We take this event, your privacy, and the security of information in our care very seriously. Upon learning of the suspicious activity, we moved immediately to investigate and respond. The investigation included confirming the security of our network, reviewing the relevant files and systems, notifying potentially affected business partners/customers, and notifying federal law enforcement. As part of our ongoing commitment to your privacy and the security of information in our care, we are also reviewing our existing policies and procedures.”
“In general, individuals should remain vigilant against incidents of identity theft and fraud by reviewing account statements, explanation of benefits statements, and monitoring free credit reports for suspicious activity and to detect errors. Suspicious activity should be promptly reported to relevant parties including an insurance company, health care provider, and/or financial institution. Additional information and resources may be found below in the Steps You Can Take to Protect Personal Information section of this notice.”
As data breaches are becoming more common we advise to do your due diligence to protect your data.0