By HFT Staff

Jackson Medical Center has experienced an incident that may have involved some patient information. On April 5, 2024, they began mailing notification letters to certain patients whose information may have been involved in an incident.  

On February 22, 2024, they learned of an incident that disrupted the operations of some of their IT systems. They immediately took steps to secure their systems, launched an investigation with the assistance of third-party forensic experts, and notified law enforcement. Their investigation determined that an unauthorized party accessed some of their systems between February 17, 2024, and February 22, 2024, and accessed or removed certain files. They then initiated a review and analysis of those files to determine what information they contained.  

On March 8, 2024, their review determined the files contained some patient information. The information involved varied per individual, but their investigation determined that the files contained patients’ name and Social Security number and may have contained some or all the following: patients’ contact information, dates of birth, driver’s license or state identification numbers, medical information including treatment and diagnosis information, and/or health insurance information. 

Patients whose information may have been involved are encouraged to review the statements they receive from their healthcare providers and health insurers. If they see services they did not receive, they should contact the provider or insurer that issued the statement immediately. Additionally, they are offering complimentary identity monitoring services to patients whose Social Security numbers or driver’s license, or state identification numbers may have been involved.  

To help prevent something like this from happening again, they have implemented additional safeguards and technical security measures to further protect and monitor their systems.