Mercy Health report data breach through third party vendor Perry Johnson & Associates
Learn More
Mercy Health has raised significant concerns of impact on their patients from the data breach at Perry Johnson & Associates, Inc. (PJ&A), a company specializing in medical transcription services.
Mercy Health is a prominent healthcare organization in the United States, known for providing a range of medical services. It operates as part of the larger healthcare network called Bon Secours Mercy Health, which is one of the country's largest Catholic health care systems.
This breach occurred when an unauthorized entity infiltrated PJ&A's network and extracted copies of certain files from their systems. The intrusion spanned from March 27 to May 2, according to PJ&A's statement.
For certain individuals, the breach might have extended to highly sensitive data like
- Social Security numbers,
- insurance details,
- specific clinical information from medical transcription files.
- laboratory and diagnostic test results,
- medication lists,
- names of treatment facilities,
- healthcare providers involved.
No details are disclosed about the number of affected individuals.
Update - as of 13th of December, Mercy Medical has notified 97,000 patients about a security breach that might have compromised their personal information
Mercy Health itself did not offer additional comments beyond what was stated by PJ&A. PJ&A disclosed that they engaged a cybersecurity firm to help investigate the breach, contain the threat, and enhance the security of their systems. Part of this response included a review of the compromised files to ascertain their exact contents.
