What happened in the General Physician, PC (GPPC) data security incident?

General Physician, PC (GPPC) disclosed a data security incident involving unauthorized access to an email account between April 6, 2024, and June 12, 2024. The breach was discovered on June 12, 2024, and GPPC has since launched an investigation with third-party digital forensic specialists to identify affected individuals.

What information was potentially exposed in the GPPC data breach?

The potentially exposed information includes full names, addresses, Social Security numbers, financial account information, dates of birth, medical history, mental and physical treatment information, diagnosis details, treating physician information, medical record numbers, health insurance details, policy numbers, subscriber numbers, and group/plan numbers.

What is the impact of the GPPC data breach?

The full extent of the impact is currently unclear, as GPPC has not disclosed the number of affected individuals. However, the exposed information includes sensitive personal and health-related details, which could potentially be used for identity theft or fraud.

How will GPPC notify affected individuals?

GPPC plans to notify affected individuals via mail, providing details about the breach and steps they can take to protect their information.

Incident

General Physician, PC reports data breach exposing patient SSNs

Q: How is GPPC responding to the data breach?

GPPC has initiated an investigation with third-party digital forensic specialists and is conducting a comprehensive review to identify affected individuals. They plan to notify impacted individuals via mail.

published: Oct. 24, 2024

Learn More

General Physician, PC (GPPC) recently disclosed a data security incident that may have exposed sensitive personal and health information of certain individuals. GPPC is a healthcare services provider headquartered in Dunkirk, New York, serving the Western New York region.

The incident was discovered on June 12, 2024, through a breach of a GPPC email account. The attacker had unauthorized access between April 6, 2024 – June 12, 2024. After discovering the suspicious activity, GPPC initiated an investigation with third-party digital forensic specialists and is conducting a comprehensive review to identify affected individuals.

The information that may have been accessed includes:

Full names
Addresses
Social Security numbers
Financial account information
Dates of birth
Medical history information
Mental and physical treatment information
Diagnosis information
Treating physician details
Medical record numbers
Health insurance information
Policy numbers
Subscriber numbers
Group/plan numbers

GPPC has not disclosed the number of individuals affected by this incident. They plan to notify impacted individuals via mail

General Physician, PC reports data breach exposing patient SSNs

Read More
CoinFlip reports data breach caused by compromised employee …
UK Spy agencies investigate potential data breach in …
Israeli hospital hit by ransomware attack during Yom …
ArdyssLife reports third party data breach
Ascension Health reports data breach exposing patient info