Experts On Express MRI Notifies Patients of Data Breach

Express MRI has notified patients of a data breach that may involve some of their information. Express MRI investigated that an unauthorized email was sent from its email account but investigated concluded no patient information was accessed during the incident. However, the secondary investigation conducted last month concluded that there is no evidence that any particular patient information is accessed during the incident but it may be possible that the emails containing patient information have been accessed, read, or exported.

Experts Comments

July 27, 2021
Boris Cipot
Senior Sales Engineer
Synopsys

It is good to hear that no financial or insurance information, patient images or social security numbers were stolen in this data breach; however, customers of Express MRI should not let their guard down as the data that was breached - names, email addresses, physicians names etc. - could be used for phishing attacks. Usually, the attacker would request further information in order to confirm the recipient's identity. Phishing emails can also include links to online forms that request personal

.....Read More

It is good to hear that no financial or insurance information, patient images or social security numbers were stolen in this data breach; however, customers of Express MRI should not let their guard down as the data that was breached - names, email addresses, physicians names etc. - could be used for phishing attacks. Usually, the attacker would request further information in order to confirm the recipient's identity. Phishing emails can also include links to online forms that request personal data or even ask users to log in to a known service. However, those forms or login pages are fake and collect personal information which is then used for further scams. Phishing emails are often sent with attachments, so it is important to never open any attachments or click on links from an untrusted source, and keep in mind that institutions typically do not request your personal data via email or phone. If users’ are still in doubt, it is advisable to look up the institutions’ contact details and call them directly to confirm the validity of the emails. Make sure you do not contact them using phone numbers included in suspicious emails, as these can potentially lead directly to the scammers.

  Read Less

Submit Your Expert Comments

What do you think of the topic? Do you agree with expert(s) or share your expert opinion below.
Be part of our growing Information Security Expert Community (1000+), please register here.

Write Your Expert Comments *
Your Registered Email *
Notification Email (If different from your registered email)
* By using this form you agree with the storage and handling of your data by this web site.