In November, Central Kansas Orthopedic Group discovered that an unauthorized third party had deployed ransomware on its computers. While Central Kansas Orthopedic Group refused to pay the ransom demand, the group was able to restore its system from available backups.
All medical records were properly restored. There is no evidence that patient data was removed from its system or that the data has been misused. Since contacting a third-party forensic company, Central Kansas Orthopedic Group is working to enhance its overall security platform and security protocols.
Patient data that may have been exposed included addresses, dates of birth, driver’s license numbers, health information, referring providers, health insurance numbers, Social Security numbers and email addresses.
More articles on cybersecurity:
Texas provider alerts 6,500 patients of phishing attack
Connecticut payer alerts 1,100 members of phishing attack
10 tips for hospitals to mitigate ransomware attacks