Site icon SnapInHIPAA

PHI of 47,000 People Potentially Affected in Electromed Inc. Data Breach

Electromed Inc. based in New Prague, MN, is a developer and maker of airway clearance devices. It has reported a security breach that occurred in June 2021 wherein unauthorized people acquired access to selected IT systems.

Electromed stated unauthorized activity was seen in its IT solutions on June 16, 2021 and steps were promptly undertaken to avoid more unauthorized access. The company launched an investigation to find out the source and extent of the breach with the help of third-party cybersecurity specialists.

Electromed confirmed that the unauthorized third party viewed some files that included the personal data and protected health information (PHI) of its clients, along with records of its staff members and selected third-party contractors. A thorough evaluation was done of all files on the impacted systems. The files included the first and last names of customers, their mailing addresses, medical records, medical insurance data. The files of associates included driver’s license numbers, Social Security numbers, and financial account data.

Although it is probable that the attackers acquired these types of data, there is no proof found that suggests improper use of the above data and there is no report obtained of any incidents of identity theft associated with the security breach.

As a safety measure against identity theft and fraud, free credit monitoring and identity theft protection services were provided to impacted persons, who were instructed to verify their credit reports, fiscal accounts, and explanation of benefits reports for any indication of a fraudulent transaction.

Securing the privacy of clients’ personal data is vital to Electromed, and it is sad that this incident brought trouble to its clients. To help avoid the same occurrence later on, the company took steps to improve the security of its systems, and keeps on reviewing its security protocols and procedures, and bettering staff training and education.

Electromed reported the security breach to the HHS’ Office for Civil Rights and indicated that 47,200 people were affected.

Exit mobile version