On April 5, 2024, the Epilepsy Institute d/b/a the Epilepsy Foundation of Metropolitan New York (“EFMNY”) filed a notice of data breach with the Attorney General of Massachusetts after discovering that a data security incident impacted sensitive information in the organization’s possession. In this notice, EFMNY explains that the incident resulted in an unauthorized party being able to access consumers’ confidential information, including their names, dates of birth, Social Security numbers, account numbers, health insurance information and medical information. Upon completing its investigation, EFMNY began sending out data breach notification letters to all individuals whose information was affected by the recent data security incident.
If you received a data breach notification from the Epilepsy Foundation of Metropolitan New York, it is essential you understand what is at risk and what you can do about it. A data breach lawyer can help you learn more about how to protect yourself from becoming a victim of fraud or identity theft, as well as discuss your legal options following the Epilepsy Foundation of Metropolitan New York data breach. For more information, please see our recent piece on the topic here.
What Caused the EFMNY Data Breach?
The Epilepsy Foundation of Metropolitan New York data breach was only recently announced, and more information is expected in the near future. However, EFMNY’s filing with the Attorney General of Massachusetts provides some important information on what led up to the breach. According to this source, recently EFMNY learned that it was the victim of a cyberattack when portions of the organization’s computer network were encrypted.
In response, EFMNY secured its systems and then launched an investigation into the incident with the help of third-party cybersecurity experts. While the EFMNY investigation concluded that its electronic health records database was not compromised, the investigation revealed that files and folders within certain systems were accessed and/or acquired by an unauthorized party.
After learning that sensitive consumer data was accessible to an unauthorized party, Epilepsy Foundation of Metropolitan New York reviewed the compromised files to determine what information was leaked and which consumers were impacted. EFMNY completed this process on October 12, 2023. While the breached information varies depending on the individual, it may include your name, date of birth, Social Security number, account number, health insurance information and medical information.
On April 5, 2024, Epilepsy Foundation of Metropolitan New York sent out data breach letters to anyone who was affected by the recent data security incident. These letters should provide victims with a list of what information belonging to them was compromised.
More Information About Epilepsy Foundation of Metropolitan New York
Founded in 1968, the Epilepsy Foundation of Metropolitan New York is an organization dedicated to increasing the understanding of epilepsy and supporting those who suffer from the condition. Staffed with professionals from the medical, social work, vocational counseling and psychological professions, the EFMNY provides a wide variety of services and supports to persons with epilepsy, their families and the community.
