On April 22, 2022, Phelps Health was notified by its provider, MCG Health, LLC (“MCG”), that MCG had experienced a data security incident. On March 25, 2022, MCG determined that certain personal information about certain Phelps Health patients maintained by MCG had already been obtained by an unauthorized party. The affected patient information included some or all of the following data elements: names, social security numbers, medical codes, mailing addresses, phone numbers, email addresses, dates of birth, and gender.
After becoming aware of this issue, Phelps Health and MCG took steps to understand the nature and scope of the data security incident. Additionally, MCG has retained the services of a leading forensic investigation company to assist in its investigation and is coordinating with the FBI. MCG has deployed additional monitoring tools and will continue to improve the security of its systems to prevent such an incident from happening again. Phelps Health also takes the privacy and security of patient information seriously and will continue to monitor MCG’s efforts and its relationship with MCG to better protect this information.
As a precaution, everyone involved is recommended to take steps to protect their personal information and reduce the risk of identity theft, such as monitoring credit reports and reviewing account information to verify unknown activities. If suspicious activity is observed, affected individuals should promptly contact the institution where the account is maintained.
Affected individuals who may have questions or would like additional information regarding this issue may contact a dedicated toll-free number at 866-475-7221 Monday through Friday, 6 a.m. to 8 p.m. PT or Saturday through Sunday, from 8 a.m. to 5 a.m. PM, PT. If you have any questions or would like additional information, please contact Lisa Searcy at 573-458-7605 or [email protected]