Perry Johnson & Associates transcription reports data breach

On November 3, 2023, Perry Johnson & Associates (PJ&A), a transcription firm headquartered in Henderson, Nevada, specializing in services for the medical, legal, and government sectors reported a data security breach.

On May 2, 2023, PJ&A became aware of a security issue potentially affecting part of their network. The company enlisted cybersecurity professionals to aid in their investigative efforts. Preliminary findings on May 22, 2023, confirmed unauthorized network access, necessitating a more exhaustive analysis.

The probe concluded that from March 27, 2023, to May 2, 2023, an external party had access to PJ&A’s network, with certain consumer data being exposed from April 7, 2023, to April 19, 2023.

The breach compromised sensitive consumer data including

• names,
• Social Security numbers,
• birth dates,
• residential addresses,
• medical and hospital account numbers,
• admission diagnoses
• service dates and times.
• insurance details,
• medical transcription records,
• medication information,
• names of treatment facilities and healthcare providers.

There is no details of the cause of the breach nor the number of affected individuals.

At least Cook County Health and Hospitals System have reported an incident that was caused by this breach, and have dropped PJ&A as a supplier.

Update - Perry Johnson & Associates (PJ&A) has issued a warning about a data breach following a cyberattack in March 2023. The breach potentially exposed the personal information of nearly 9 million patients.