SEMOMS’ patient data impacted by ransomware attack

Featured image

Share this article

Hacker wearing a gray hoodie and mask

On September 23, 2019, Southeastern Minnesota Oral & Maxillofacial Surgery (SEMOMS) discovered a ransomware attack on one of its servers that potentially exposed the protected health information of about 80,000 patients. 

SEMOMS is a Minnesota healthcare facility that specializes in treatments for the face, teeth, mouth, and jaw. 

What happened?

SEMOMS IT staff quickly responded and were able to restore the breached data. A third-party forensics team also investigated but could not identify if patients names and x-rays were accessed and could not give a definitive answer concerning what patient data was exposed. 

It was not reported if the ransom was paid and the amount of money that was demanded by the attackers.

What information was involved?

Patients are being notified as a precautionary measure and SEMOMS confirmed that financial information, medical records, and Social Security numbers weren’t affected by the attack. 

Letters were sent to patients whose data was potentially compromised that includes information on what occurred and a 1-800 number to call to learn more about the security incident. 

In response to the attack, SEMOMS is reviewing and updating its information security procedures and policies to prevent a similar event from occurring in the future. 

Southeastern Minnesota Oral & Maxillofacial Surgery (SEMOMS) is classified as a Healthcare Provider.

HHS Wall of Shame

The HHS Wall of Shame is a website under the jurisdiction of the U.S. Department of Health and Human Services (HHS) that lists all HIPAA breaches reported within the previous 24 months. The Wall of Shame displays breaches that are being investigated by the Office for Civil Rights (OCR).

The HHS Secretary must post a list of protected health information breaches affecting 500 or more people as part of section 13402(e)(4) of the HITECH Act. 

HIPAA Breach Report

The Paubox HIPAA Breach Report analyzes breaches that have impacted 500 or more individuals as reported in the HHS Wall of Shame.

Try Paubox Email Suite for FREE today.
Author Photo

About the author

Rick Kuwahara

Rick Kuwahara is COO and Chief Compliancy Officer for Paubox.

Read more by Rick Kuwahara

Get started with
end-to-end protection

Bolster your organization’s security with healthcare’s most trusted HIPAA compliant email solution

The #1-rated email encryption 
and security software on G2

G2 Badge: Email Encryption Leader Fall 2022
G2 Badge: Security Best Usability Fall 2022
G2 Badge: Encryption Momentum Leader Fall 2022
G2 Badge: Security Best Relationship Fall 2022
G2 Badge: Security Users Most Likely to Recommend Fall 2022
G2 Badge: Email Gateway Best Relationship Fall 2022
G2 Badge: Email Gateway Best Meets Requirements Fall 2022
G2 Badge - Users Most Likely to Recommend Summer 2022
G2 Badge: Email Gateway Best Results Fall 2022
G2 Badge: Email Gateway Best Usability Fall 2022
G2 Badge: Email Gateway Best Support Fall 2022
G2 Badge: Email Gateway Easiest To Use Fall 2022
G2 Badge: Email Gateway Easiest Setup Fall 2022
G2 Badge: Email Gateway Easiest Admin Fall 2022
G2 Badge: Email Gateway Easiest to do Business with Fall 2022
G2 Badge: Email Gateway Highest User Adoption 2022
G2 Badge: Email Gateway High Performer Fall 2022
G2 Badge: Email Gateway Momentum Leader Fall 2022
G2 Badge: Email Gateway Most Implementable Fall 2022
G2 Badge: Email Gateway Users Most Likely to Recommend Fall 2022