close
close

Law firm used by Presbyterian says data breach may have affected patients’ personal information – Insurance News

Posted on by Pranco
Law firm used by Presbyterian says data breach may have affected patients’ personal information – Insurance News

A law firm that provides services to Presbyterian Health Care Services says it experienced a data security incident earlier this year involving protected information of some of the health system’s patients.

St. Louis-based Thompson Coburn said the incident occurred May 28-29. The law firm said patient information – such as Social security numbers, dates of birth and health insurance information – were included in files viewed or taken by an “unauthorized actor.”

“Unfortunately, we have learned that a law firm we work with Thompson Coburn LLPexperienced a data security incident involving the protected health information of certain Presbyterian patients,” a Presbyterian spokesperson said Amanda Schoenberg wrote in an email to the Journal late Monday. “While Thompson Coburn is sending letters to potentially affected patients this week, the law firm has no indication that identity theft or fraud has occurred in connection with this incident.”

Thompson Coburn said it plans to notify potentially affected patients at Presbyterian via letters, noting that it does not believe there has been identity theft or fraud related to the breach.

Thompson Coburn said in a press release: “The specific type of information in question varies by individual and is specified in the letters sent to the individuals involved.”

Schoenberg wrote in an email that Thompson Coburn provides legal advice to the health care system on matters such as billing and government reimbursement, adding that “some health information may be relevant to some legal matters.” Schoenberg did not say how many patients may be affected, but said, “We take the responsibility to protect the privacy of our patients and members very seriously.”

The Journal tried to get more details from Presbyterian late Monday about Thompson Coburn’s role. An attorney representing Thompson Coburn did not immediately respond to a Journal request for comment.

The news comes as other health-related companies enter New Mexico have experienced cybersecurity incidents in recent years, including Lovelace Health Systemwhich had to divert emergency patients and reschedule specific surgeries last year after a ransomware attack on its parent company, Fiery healthcare.

Also last year, Blue Cross and Blue Shield of New Mexicoa health insurer, suffered breaches in its systems, endangering patient safety. Social security telephone numbers, bank account details, names, addresses, telephone numbers and dates of birth. And inside March 2022patients of First choice community health care their information was compromised after a data breach at the Albuquerqueestablished health clinic.

Thompson Coburn said it “immediately commenced an investigation with the assistance of external forensic specialists” after being made aware of the incident on May 29.

The law firm said it encourages affected individuals to “remain vigilant” against identity theft by reviewing account statements, credit reports and benefit explanations for “unusual activity and to detect errors.”