Wolfe Eye Clinic in Iowa announced that it was the target of a cyberattack that may have involved patient records.
The Des Moines Register reports that the practice is notifying 500,000 current and former patients that their personal information may have been accessed.
The attack occurred on Feb. 8, but “the full scope of information potentially impacted was not fully realized until May 28, 2021,” according to a press release.
“We discovered that the personal information of certain individuals may have been accessed by an unauthorized third party,” according to the release. “For some, this information may include their name, mailing address, date of birth and Social Security number; and for others it may also include protected medical and health information.”
Luke Bland, chief financial officer of Wolfe Eye Clinic, said, “We take our responsibility to protect personal information in our control very seriously and apologize for any concern or inconvenience this may cause. We continue to closely monitor the situation and are committed to notifying past and present patients about what happened and what they can do to protect their information.”
The clinic stated that it has secured the services of IDX to provide identity monitoring, at no cost, to affected individuals for 12 months.
Advertisement
Read more at the Des Moines Register