Initial Notice Date - November 26th, 2024
Updated December 5, 2024
Jefferson Dental Center, Inc (Jefferson Dental Center) has been the victim of a security incident. This notice provides information about how this security breach may have affected personal health information for patients of Jefferson Dental Center and to provide steps that can be taken to protect one's personal information.
Incident Information
On November 15th, 2024 Jefferson Dental Center discovered that our computer network systems were not working. Upon inspection we determined that we were a victim of a ransomware attack and immediately took steps to stop and mitigate the attack. Based on an ongoing investigation about this incident, our network appeared to be accessed on or around November 14th,2024 by an unauthorized user that gained access to our network undetected. Sensitive information may have been inappropriately accessed and/or obtained before ransomware encryption occurred to our network on November 15, 2024.
What Type of Information Was Involved?
We have determined that the network shares accessed in this incident included information that may include personal identifying information, including health information of patients of Jefferson Dental Center. Information involved may have included patient files and other records stored on the affected shares including one or more of the following types of information: demographic information (such as names, social security numbers, addresses, driver’s license numbers and date of birth), clinical and treatment information and information related to insurance or claim information. Some of this data may also include related subscribers or guarantors who paid bills for healthcare services of others.
What Has Been Our Response to This Incident?
We have notified the Indiana Attorney General’s office and federal law enforcement. A breach notification was filed with the Secretary of HHS and Office of Civil Rights.
Jefferson Dental Center takes its duties to safeguard personal information very seriously and continues to look for additional measures to secure and strengthen our practice’s network security. We have added new procedures and policies to ensure our patient data is secure in this evolving environment of cyber security.
What You Can Do
You have the right to place an initial or extended fraud alert on your file at no cost. An initial fraud alert will stay on your credit file for one (1) year. Alerts inform creditors of possible fraudulent activity within your report and require the creditor to verify your identity before extending new credit. We recommend immediate steps be taken to protect yourself from any potential information breach harm including:
• Monitor account statements, EOBs, and credit bureau reports closely
• Register a fraud alert with the three credit bureaus listed here; and order credit reports:
Experian: (888) 397-3742; www.experian.com; PO Box 9532, Allen, TX 75013
TransUnion: (800) 680-7289; www.transunion.com; Fraud Victim Assistance Division, PO Box 6790, Fullerton, CA 92834-6790
Equifax: (800)525-6285; http://www.equifax.com; PO 740241, Atlanta, GA 30374-0241
We have set up a Toll-Free Number, for you to call if you have any questions, comments or concerns about this incident. Please call Toll Free (888) 807-5634 Ext 101 or contact our HIPAA officer at mont@jeffersondentalcenter.com.
© 2024 Jefferson Dental Center, Inc. located in South Bend, Indiana.