October 16, 2021

Volume XI, Number 289

Advertisement
Advertisement

October 15, 2021

Subscribe to Latest Legal News and Analysis

October 14, 2021

Subscribe to Latest Legal News and Analysis

October 13, 2021

Subscribe to Latest Legal News and Analysis
Advertisement

Medical Center Rebuilding EMR Following Ransomware Attack

Queen Creek Medical Center (QCMC), also known as Desert Wells Family Medicine, located in Arizona, has notified up to 35,000 patients of a data breach following a ransomware attack that corrupted its medical records system, leading to a loss of a significant number of records.

According to a letter sent to patients, QCMC discovered that during the ransomware attack, the threat actor corrupted the data and QCMC’s back-ups, and despite efforts to repair and restore the data, QCMC was unable to recover that information. Therefore, no patient electronic records prior to the attack on May 21, 2021 are recoverable and QCMC has to rebuild the entire medical record system from scratch.

Following the attack, QCMC stated that it will upgrade its EHR, enhance endpoint detection, implement 24/7 threat monitoring, and train employees. All of these measures are important for basic cybersecurity hygiene and their implementation before  an attack occurs can either help prevent one, or aid in the recovery from the attack.

This attack emphasizes the importance of implementing tools that can help prevent or diminish the devastating effect of a cyber attack on a small organization and that investing in cybersecurity tools in advance of an attack may be a more effective use of resources.

Copyright © 2021 Robinson & Cole LLP. All rights reserved.National Law Review, Volume XI, Number 259
Advertisement
Advertisement
Advertisement
Advertisement
Advertisement
Advertisement

About this Author

Linn F. Freedman, Robinson Cole Law Firm, Cybersecurity and Litigation Law Attorney, Providence
Partner

Linn Freedman practices in data privacy and security law, cybersecurity, and complex litigation. She provides guidance on data privacy and cybersecurity compliance to a full range of public and private clients across all industries, such as construction, education, health care, insurance, manufacturing, real estate, utilities and critical infrastructure, marine, and charitable organizations. Linn is a member of the firm's Business Litigation Group and chairs its Data Privacy + Cybersecurity Team. She is also a member of the Financial Services Cyber-Compliance Team (CyFi ...

401-709-3353
Advertisement
Advertisement
Advertisement