Forefront reports that they had identified an intrusion into their system that exposed 4,431 patients data they took their system offline to prevent further spread or damage.
Subsequent investigation revealed that there had been unauthorized access to some of its patient files and employee files.
The patient files that were accessed may have included patient names, addresses, dates of birth, patient account numbers, health insurance plan member ID numbers, medical record numbers, dates of service, accession numbers, provider names, and/or medical and clinical treatment information.
There were no evidence that patient Social Security numbers, driver’s license numbers, or financial account / payment card information were involved in this incident.
"id": "FOR1358223",
"linkid": "forefront-dermatology",
"type": "Data Leak",
"date": "07/2021",
"severity": "50",
"impact": "2",
"explanation": "Attack limited on finance or reputation"