DataBreaches.net

DataBreaches.net

The Office of Inadequate Security

Menu
  • Breach Laws
  • About
  • Donate
  • Contact
  • Privacy
  • Transparency Reports
Menu

OK: Saint Francis Hospital Gift Shop Acts to Block Payment Card Security Incident

Posted on June 5, 2015 by Dissent

Saint Francis Health System (“Saint Francis”) takes seriously the privacy and confidentiality of the personal information provided to it by visitors to the Saint Francis Hospital gift shop.  Regrettably, this notice is about an incident involving some of that information.

On March 20, 2015, Saint Francis discovered that an unauthorized person remotely installed malware on the point-of-sale device in the gift shop at Saint Francis Hospital.  Upon learning this, Saint Francis immediately launched an investigation and engaged a leading computer forensic firm to examine the gift shop’s payment system.  The malware was used to search for payment card data that was routed through the point-of-sale device at the gift shop.  The investigation revealed that the malware was installed on the device for a short window of time between March 5, 2015 and March 17, 2015.  Information from payment cards that may have been captured during this period includes the cardholder’s name, card number, expiration date and verification code.

If a visitor used his or her payment card in the Saint Francis Hospital gift shop between March 5, 2015 and March 17, 2015, the visitor should regularly review his or her account statements for any unauthorized activity.  If the visitor sees any unauthorized charges, he or she should contact the bank that issued the card.  The credit card companies typically guarantee that cardholders will not be responsible for fraudulent charges.

Saint Francis regrets any inconvenience this may cause.  Keeping visitor information secure is a top priority at Saint Francis, and it has enhanced policies and procedures designed to prevent unauthorized access to point-of-sale systems.  Saint Francis is also working with the credit card companies and processors to provide them with the account numbers for cards used during the period at issue so that the banks that issued those cards can be alerted.  When banks receive these alerts, they can conduct heightened monitoring of transactions to detect and prevent any unauthorized charges.  Individuals with questions regarding this incident may call Saint Francis at (918) 494-3503.

About Saint Francis Health System

Founded in 1960 by Natalie and William K. Warren, Sr., Saint Francis Health System is a not-for-profit leading healthcare provider for northeastern Oklahoma.  Guided by a Christ-centered mission, there are nearly 7,000 health system employees who are dedicated to providing excellent care to patients and their families.

SOURCE Saint Francis Health System

Related Posts:

  • TN: Identity thefts linked to St. Francis Hospital
  • OK: Saint Francis Investigating Hack by Seeming TDO Copycats
  • CT: 850 St. Francis Hospital patients notified after…
  • MO: Saint Francis Healthcare announces ransomware…
  • Hospital, Patients Seek Ransomware Attack Settlement…

Post navigation

← After breaches, higher-ed schools adopt two-factor authentication
Scammers get personal info from 150 people on U-M email system →

Sponsored or Paid Posts

This site doesn’t accept sponsored posts and doesn’t respond to requests about them.

Have a News Tip?

Email:

Breaches[at]Protonmail.ch
Tips[at]DataBreaches.net

Signal: +1 516-776-7756

Telegram: @DissentDoe

Browse by News Section

Latest Posts

  • Cybersecurity: Federal Agencies Made Progress, but Need to Fully Implement Incident Response Requirements (GAO Report)
  • Hackers Exploited ColdFusion Vulnerability to Breach Federal Agency Servers
  • CBIZ KA Notice of Data Privacy Incident (Prime Healthcare)
  • Seeking clarification on Maine’s data breach notification statute
  • East River Medical Imaging notifies 605,809 patients of breach
  • Russian hackers exploiting Outlook bug to hijack Exchange accounts
  • Britain dismisses report claiming Sellafield nuclear site hacking, says no malware exists on our system
  • 23andMe data breach: Hackers accessed data of 6.9 million users

Please Donate

If you can, please donate XMR to our Monero wallet because the entities whose breaches we expose are definitely not supporting our work and are generally trying to chill our speech!

Donate- Scan QR Code   Donate!

Social Media

Find me on Infosec.Exchange.

I am also on Telegram @DissentDoe.

RSS

Grab the RSS Feed

Copyright

© 2009 – 2023, DataBreaches.net and DataBreaches LLC. All rights reserved.

HIGH PRAISE, INDEED!

“You translate “Nerd” into understandable “English” — Victor Gevers of GDI Foundation, talking about DataBreaches.net

©2023 DataBreaches.net