ReproSource Fertility Diagnostics notifies approximately 350,000 patients after ransomware incident

Quest-owned ReproSource Fertility Diagnostics, Inc. has notified approximately 350,000 patients whose data may have been accessed in a ransomware attack on Aug 8. The attack by unnamed threat actors was discovered on August 10, and Reprosource quickly severed all network connection activity and contained the incident.

Although they have no evidence that any protected health information was acquired or exfiltrated, the provider is notifying all those whose data was potentially accessed.  Their data included a number of protected health information fields in addition to name:

address, phone number, email address, date of birth, billing and health information, such as CPT codes, diagnosis codes, test requisitions and results, test reports and/or medical history information, health insurance or group plan identification names and numbers, and other information provided by you or your treating physician

Quest Diagnostics reported the incident to the SEC on October 8, and DataBreaches.net also found notification by their external counsel to the Maine Attorney General’s Office on October 8.

ReproSource is only the latest in a number of incidents involving fertility clinics or reproductive services.  Some other ransomware attacks on fertility/reproductive entities over the past few years include:

 

About the author: Dissent

Leave a Reply

Your email address will not be published.Email address is required.

This site uses Akismet to reduce spam. Learn how your comment data is processed.