Mohawk Valley Cardiology Data Breach Affects Two

Mohawk Valley Cardiology, P.C., based in Utica, New York, recently disclosed a data breach that may have exposed sensitive patient information. On September 12, 2024, the company determined that an unauthorized third party had accessed certain portions of its network. This breach potentially compromised consumer data stored within its systems.

The breach affected at least two individuals in Massachusetts, according to a filing with the Massachusetts Attorney General's Office. The exposed data includes sensitive medical and personal information.

The compromised information may include:

• First and last name
• Address
• Medical intake forms, including medical history
• Images related to medical services
• Health insurance information

The breach was serious in nature, as it involved highly sensitive medical and insurance data. This type of information could be exploited for identity theft or insurance fraud, making the incident particularly concerning for those affected.

Mohawk Valley Cardiology, P.C.'s response

Upon discovering the breach, Mohawk Valley Cardiology took immediate steps to address the situation. The company launched an investigation with the assistance of an incident response team and data security professionals. Law enforcement was also involved in the investigation.

In addition to investigating the breach, the organization has implemented enhanced security controls to mitigate the risk of future incidents. To support affected individuals, Mohawk Valley Cardiology is offering 12 or 24 months of free credit monitoring and cyber monitoring services through Cyberscout, a subsidiary of TransUnion. These services include:

• Alerts for changes to credit files
• Dark web monitoring for exposed information
• Assistance with fraud-related issues

Affected individuals can enroll in these services by visiting the enrollment website provided in the notification letter and using their unique code. Enrollment must be completed within 90 days of receiving the notification.

Affected by the data breach?

If you have received a notification from Mohawk Valley Cardiology regarding this breach, it is important to take steps to protect your personal and financial information. Here’s what you should do:

1. Enroll in the free credit monitoring and cyber monitoring services offered by Mohawk Valley Cardiology. These services are designed to help you detect and respond to potential fraud or misuse of your information.
2. Monitor your financial accounts and credit reports for any unusual activity. You are entitled to one free credit report annually from each of the three major credit bureaus. Visit Annual Credit Report to access your reports.
3. Consider placing a security freeze or fraud alert on your credit file. A security freeze restricts access to your credit report, while a fraud alert notifies creditors to take extra steps to verify your identity before extending credit.
1. To place a security freeze, contact Experian, TransUnion, or Equifax:
1. Experian Security Freeze
2. TransUnion Security Freeze
3. Equifax Security Freeze

1. Be vigilant against phishing attempts or scams. Do not provide personal information to unsolicited emails, calls, or messages claiming to be related to this incident.
2. Report any signs of identity theft to the Federal Trade Commission (FTC) at IdentityTheft.gov and file a police report if necessary.

By taking these steps, you can reduce the risk of identity theft and protect your personal information from further exposure.