DERMATOLOGY GROUP OF ARKANSAS, P.A.

DGA recently notified individuals of a data security incident involving access to three employee email accounts by an unauthorized third-party as the result of a phishing incident.

The accessed email accounts contained the personal and protected health information of certain patients, including their name, date of birth, address, diagnostic/treatment information, medical record number, patient account number, date of service, provider name, surgical information, medication information, and health insurance information.

For the individuals whose Social Security numbers were impacted, complimentary credit monitoring was offered.

Source: https://www.databreachtoday.com/dermatology-clinic-chain-breach-affects-24-million-a-17074

"id": "DER18152223",
"linkid": "dermatology-group-of-arkansas-p.a.",
"type": "Data Leak",
"date": "07/2021",
"severity": "85",
"impact": "3",
"explanation": "Attack with significant impact with internal employee data leaks"