The recent cybersecurity incident at Brigham & Women's Physician Organization, Inc (BWPO) has raised concerns for many. If you're among those potentially affected, it's important to understand the specifics of what happened and what personal information was compromised.
What Happened?
On January 29, 2024, BWPO was informed by Harvard Pilgrim Health Care of a cybersecurity incident that occurred between March 28, 2023, and April 17, 2023. It's crucial to note that the breach did not take place within BWPO's systems or network.
What Information Was Involved?
The breach potentially exposed a variety of personal information, including:
Thankfully, Social Security Numbers and financial information were not involved in this incident.
What Steps Are Being Taken?
BWPO has taken measures to address the issue and prevent future occurrences. They've implemented corrective actions in line with their policies and have received confirmation that the affected data has been permanently deleted by the responsible BWPO part-time employee and Harvard Pilgrim.
What Can You Do?
If you believe you're affected by this breach, there are several steps you can take to protect your personal information:
For more detailed guidance, BWPO has provided a Reference Guide to help you navigate the aftermath of the data breach.
Seeking Further Information
If you have questions or need assistance, BWPO encourages you to reach out via email at bwhcHIPAA@partners.org or by calling their toll-free number at 833-294-2020 during business hours.
BWPO expresses deep regret for any concern or inconvenience caused by this incident and is committed to maintaining the privacy and security of your data.
By taking the appropriate steps outlined above, you can help safeguard your information and mitigate the potential impact of the data breach. For further assistance and resources, you can also consult the Federal Trade Commission for additional advice on protecting your personal information.
A breach notice means your personal details could be circulating far beyond the organization involved. One practical step is continuous monitoring: services such as Identity Defender (included with an ExpressVPN subscription) can automatically check dark-web markets, flag new credit-file activity, and request removal of your information from data-broker sites.
This kind of “early-warning system” can’t undo a breach, but it can help you spot misuse quickly and limit further exposure. ExpressVPN is offering 61% off, risk-free for 30 days, with ID Theft Insurance included and no extra cost for those who sign up for one or two years.