A dental practice in Ottumwa, Iowa, experienced a data breach that could have exposed patient information, the Ottumwa Courier reported Jan. 26.
The office of Gregory Vannucci, DDS, experienced the breach in November 2020, in which an unauthorized third-party accessed the network and encrypted its data. The practice then cut off access to the network and started an investigation into the incident with a cybersecurity firm. The investigation determined that patient data could have been compromised, although there was no evidence that individual patient information was accessed.
Data that may have been compromised includes first and last names, dental treatment information and social security numbers.
The office notified possible affected patients via mail Jan. 18. The letters included offers to enroll patients in free credit monitoring and identity theft protection services.
The office said it has implemented additional security measures since the incident and has not yet been notified of any identity theft or observed additional unauthorized network activity.