Note: the following is a press discharge from AMMC. DataBreaches.net reached out to Technology management Resources, but has received no reply by publication time. This post will be updated if a reply is received. Arkansas Methodist medical center (�AMMC�) has a lockbox service with IBERIABANK for collecting and processing payments from our patients and/or customers. IBERIABANK uses Technology Management Resources, Inc. (TMR) as a third�party lockbox service provider to process payments and trance pertinent payment data for items received in the lockbox. On July 3, 2020, TMR discovered that a TMR employee�s user account had been compromised. AMMC was notified of this incident on august 24, 2020 and has been actively seeking information regarding the incident to be able to provide this notice. Upon discovery of the incident, TMR reported that they secured the account and began an investigation in audience with external cybersecurity professionals. TMR has stated that their investigation determined that the threat actor may have viewed images of checks and related images containing potential Protected Health information (PHI) related to customers of arkansas Methodist medical Center. According to TMR, the threat actor action occurred between august 5, 2018 and may 31, 2020, with the bulk of the activity occurring between February and May 2020. TMR notified the FBI of this incident. What information was involved? According to TMR, their investigation concluded that the threat histrion potentially viewed images within TMR�s iRemit application that may hold PHI. The info contained on these images may have included your name, address, checking account number and routing number (as found on personal checks) and info on billing statements, submitted with your payment, such as your AMMC account number. What is the troupe doing in response? We take the secrecy and security of personal information very seriously. as part of our ongoing commitment to information concealment and the surety of information, and although this incident in no way involved AMMC�s nor IBERIABANK�s internal surety or computer systems, as a professional courtesy, IBERIABANK is offering affected individuals credit monitoring and identity theft tribute through CyberScout in order to spring peace of mind. TMR reports that they have taken several corrective actions to remediate the security incident, forestall a further security incident, and mitigate the effects of the security incident. According to TMR, TMR credentials have been reset or deactivated (as applicable). TMR also reports that they implemented additional rules in their firewall to more tightly contain the ability to access the iRemit website from other countries, among other steps taken. What you can do. as a best practice, we encourage our customers to remain vigilant against incidents of identity theft and fraud, to review financial account statements and claims information from your health indemnity provider, and to monitor credit reports for suspicious activity. Any suspicious activity or suspected identity theft should be reported to us and to the proper law enforcement authorities. For more information. To verify and obtain additional information regarding whether your information was potentially affected by this incident, please call 1�888�905�0513, toll�free, monday through Friday, 9:00 am � 9:00 pm Eastern Time. We apologize for any inconvenience this technology management Resources surety incident may make caused. Source: AMMC
