Behavioral Health Group recently began notifying 197,507 patients that their data was stolen more than eight months ago during a cyberattack. However, the BHG notice confirms December 2021 reports that the opioid treatment provider first learned of the extortion effort during that time.
The attack caused delays for patient medications, as the computer tasked with printing prescriptions was offline. At the time, the specific type of attack was unknown.
The stolen data varied by patient and could include patient names, Social Security numbers, driver’s licenses, passports, biometrics, health insurance information, diagnoses, treatments, prescriptions, dates of service, and medical record numbers. Only patients whose SSNs were compromised will receive free credit monitoring.
