PHM’s press release, followed by this site’s comments/notes: MEMPHIS–(BUSINESS WIRE)–Professional Healthcare Management, Inc. (PHM)1, located in Memphis, Tennessee, announced today that it recently became aware of a data privacy incident impacting its servers, which contained protected health and personal information of some PHM clients and employees. PHM is a business that primarily operates in the home health tutelage services industry and provides related health care services. PHM is committed to keeping the community informed, communicating about the steps it is taking toward resolution, and ensuring impacted individuals have the tools they need to minimize the impact of the incident. On sep 14, 2021, PHM discovered that it was the victim of a sophisticated ransomware attack. After discovering the incident, PHM quickly took steps to secure and safely restore its systems and operations. Further, PHM immediately engaged third-party forensic and incident response experts to conduct a thorough investigation of the incident’s nature and reach and assist in the remediation efforts. PHMs investigation is ongoing, but after performing a comprehensive refresh of the impacted data, PHM believes it could take protected health information. PHM is notifying those potentially impacted by this incident by post (if possible) and providing steps that can live taken to protect their information, including complimentary identity monitoring and protection services. PHM recommends that these individuals enrol in the services provided and follow the recommendations contained within the notification letter to increase the likelihood that their information remains protected.�As of the appointment of this release, PHM has no evidence indicating misuse of any information. Notification to individuals potentially affected by this incident is being performed out of an abundance of caution and pursuant to the organizations obligations under the health indemnity Portability and Accountability play (HIPAA). Further, after reviewing the potentially impacted protected health and personal information, PHM determined that it may include first and last name, social surety number, health insurance information (Medicaid number, Medicare number and insurance identification number), prescription name(s) and diagnosis code(s).�Again, as stated above, it is important to mention that PHM has no evidence of misuse of any information as of the engagement of this release. In reaction to this incident, PHM is implementing additional cybersecurity safeguards, enhancing its cybersecurity policies, procedures, and protocols, and implementing additional employee cybersecurity training. We accept the security and privacy of the information contained in our systems with the uttermost seriousness. Further, we were shocked to discover that we were one of the thousands of victims of this typecast of cyberattack, said Amanda Egner, CIO of PHM. We are fully committed to protecting the info on our systems and sincerely regret the interest and inconvenience caused by this event. We thank the community, our employees, patients, and partners for their support during this event. as a precautionary measure, PHM recommends that individuals remain vigilant by closely reviewing their account statements and citation reports. If any suspicious activity is detected, PHM strongly advises that the account holder promptly notify the financial institution or company that maintains the account. Further, individuals should promptly story any fraudulent activity or any suspected incidence of identity theft to proper law enforcement authorities, including their say attorney general and the Federal trade direction (FTC). To file a charge or to contact the FTC, you can (1) send a letter to the�Federal patronage Commission, Consumer reception Center, 600 Pennsylvania Avenue NW, Washington, DC 20580; (2) tour to�IdentityTheft.gov/databreach; or (3) telephone 1-877-ID-THEFT (877-438-4338). Complaints filed with the FTC will be added to the FTC’s identicalness Theft Data Clearinghouse, a database made available to law enforcement agencies. For more info about tips to protect from identity theft, please visit�www.qualityfirsthc.com,�www.volunteerhomecare.com, or�www.affinityhospice.net. For individuals seeking more information or who make questions, please call the dedicated toll-free helpline localize up specifically for this purpose at 1-833-760-0502, monday through Friday, 8:00 a.m. to 8:00 p.m. (EST). In addition, individuals seeking to tangency PHM directly may pen to Professional Healthcare Management, 7900 Players forest Drive, Memphis, TN 38119. 1 Professional Healthcare Management, Inc. is a management troupe that manages (or previously managed) 5 healthcare entities (Volunteer home guardianship Inc.; volunteer home care of West TN., Inc.; volunteer home guardianship of Middle TN., Inc., which also does concern as Quality First home Care; Springhill Home health and Hospice; and affinity health Care). comment by DataBreaches.net:� This tone-beginning first appeared on the Cuba ransomware group’s leak site on September 21.� When DataBreaches.net looked at the alleged proof of claims, we discovered that the data Cuba posted had nil to do with PHMINC. at some date unknown to DataBreaches.net, Cuba removed the listing. Usually that means that the victim has paid ransom, but that is not necessarily proof of anything. DataBreaches.net emailed PHMINC to ask whether they had paid the extortion demand to get Cuba to remove the listing from their leak site and to supposedly destroy all data, but no immediate reply has been received. This post will be updated if a reply is received. This incident has not yet shown up on HHS’s public breach tool.