On or about August 7, 2024, SW Family Medicine experienced a network security incident. Upon learning of this issue, they immediately commenced a prompt and thorough investigation. As part of the investigation, SW Family Medicine has been working very closely with external cybersecurity professionals experienced in handling these types of incidents.
After an extensive forensic investigation and internal review, on October 24, 2024, SW Family Medicine confirmed that between July 3, 2024, and August 7, 2024, certain impacted files containing personal information may have been subject to unauthorized access or acquisition. The potentially impacted information includes first and last name, Social Security Number, driver’s license number, date of birth, address and zip code, medication information, medical history, lab results, diagnosis/condition information passwords, personal identification numbers, or other access codes, numbers or information used to access financial resources, passport number, mother’s maiden name, unique private key used to authenticate or sign an electronic record, tax identification number or identity protection personal identification number, and health insurance policy number or subscriber information.
SW Family Medicine has no evidence that any personal information has been or will be misused for identity theft or medical/financial fraud as a direct result of this incident. However, out of abundance of caution, commencing on November 7, 2024, SW Family Medicine notified individuals whose information may have been included in the impacted files. Notified individuals have been provided with best practices to protect their information, and individuals whose Social Security numbers were contained in the impacted files have been offered complimentary credit monitoring.