NorthCare, an Oklahoma City mental health clinic, has announced that is investigating a ransomware attack that occurred back in June 2021. The personal health information of over 127,000 individuals may have been compromised.
NorthCare says it identified unusual IT network activity in June and believes ransomware was used to encrypt sensitive files and demand payment in order to decrypt the files.
An investigation into the North Oklahoma County Mental Health Center attack found the following information may have been stolen:
- Dates of birth
- Medical diagnoses
- Social Security numbers
The parts of the NorthCare network accessed by hackers contained patients’ protected health information, and enough data to potentially commit identity fraud and medical identity fraud. As a result, NorthCare has offered identity monitoring and identity theft restoration services to affected individuals, though data privacy attorneys believe more compensation is necessary given the future risks of identity theft.