Patient records deleted in ransomware attack

A ransomware attack in early August has resulted in the loss of patient data at three-site Rainbow Children’s Clinic, which delivers care in the Arlington and Grand Prairie region of Texas.

The attack affected an estimated 33,698 affected individuals who have received care from the provider.

Rainbow Childen%27s Clinic-CROP.jpg

As the attack started encrypting data on servers, the computer system was shut down to prevent further loss of data, according to a notice on the practice’s web site. However, some patient records were “irretrievably deleted,” the notice states.

Also See: Urgent care clinic pays ransom to regain its server

Compromised or lost protected health information included names, addresses, birth dates, Social Security numbers and medical information. Since the attack, the practice has secured its network and systems to prevent another incident, executives say.

Rainbow Children’s Clinic is offering credit monitoring and identity theft resolution services through Equifax. A clinic administrator was not available for direct comment.

For reprint and licensing requests for this article, click here.