Ex-IT Worker Breaches Confidential Data of 1 Million+ US Patients: A Disturbing Cyber Invasion

Imagine waking up one day to find out that your personal information has been compromised. It’s a nightmare that no one wants to experience, yet it’s becoming all too common in our increasingly digital world. Recently, Geisinger, a prominent healthcare system in Pennsylvania, experienced a data breach involving a former employee of Nuance, an IT services provider contracted by the organization.

Who is Geisinger?

Geisinger is a non-profit organization that operates 134 care sites, ten hospitals, and the Geisinger Health Plan, serving a total of 1.2 million people. It employs 26,000 staff, including 1,600 doctors, and is considered one of Pennsylvania’s most important organizations. So, you can imagine the impact this data breach has on the patients who trust Geisinger with their health and personal information.

The Data Breach

In November 2023, Geisinger detected unauthorized access to its patients’ database by a former Nuance employee. They quickly informed Nuance, who in turn, took action to block the former employee’s access to Geisinger’s systems holding patient records. According to the announcement, “On Nov. 29, 2023, Geisinger discovered and immediately notified Nuance that a former Nuance employee had accessed certain Geisinger patient information two days after the employee had been terminated.”

Nuance, in turn, permanently disconnected its former employee’s access to Geisinger’s records, informed law enforcement, and the former employee was arrested and charged.

What Information Was Compromised?

The investigation revealed that the following information was compromised:

• Full name
• Phone number
• Date of birth
• Address
• Admit and discharge or transfer code
• Medical record number
• Race and gender
• Facility name abbreviation

The exact data types exposed vary per person, depending on what services they received through Geisinger. Fortunately, this incident did not impact insurance information, credit card details, bank account numbers, Social Security Numbers (SSN), or other financial data.

Why Would a Former Employee Do This?

It’s unclear exactly how the former employee attempted to exploit the stolen data or if it has been disseminated already to cybercriminals. Typically, disgruntled employees who access systems using non-revoked accounts or credentials do so out of spite, aiming to cause reputation and business damage. As a result, potentially impacted people are advised to remain vigilant.

What Can You Do?

Geisinger suggests that people who are notified about the breach carefully review their statements and notify their health insurers immediately if they see entries they don’t recognize. Law firm Lynch Carpenter has already announced an investigation into the scope of the incident, exploring the potential for a class action lawsuit against Geisinger.

Stay Informed and Protect Yourself

As we continue to rely on digital systems and share our personal information with various organizations, it’s essential to stay informed about potential data breaches and take necessary precautions. Keep coming back to us to learn more about cybersecurity and how you can protect your personal information in an increasingly digital world.