Illinois Gastroenterology Group, based in Gurnee with offices throughout the Chicago area, said they recently experienced a security breach that left their patients’ private data and financial information exposed.
Illinois Gastroenterology Group (IGG) made the announcement Friday and said they discovered unusual activity within their computer network on October 22.
IGG has offices in Gurnee, Highland Park, Lake in the Hills, Libertyville, Lindenhurst, Lake Bluff and more throughout the Chicago suburbs.
The company said they immediately launched an investigation with the assistance of third-party cybersecurity specialists to determine the nature and scope of the event.
In mid-November, the investigation determined that an “unauthorized actor” gained access to certain company systems, IGG said.
Information contained in those systems may have been viewed or taken by the unauthorized actor, IGG added.
Last month, the company said they determined the following personal information was exposed: name, address, date of birth, Social Security number, driver’s license, passport, financial account information, payment card information, employer-assigned identification number, medical information, and biometric data.
IGG said they have not yet received any reports of fraudulent misuse of personal information impacted.
“IGG takes this incident and the security of personal information in its care seriously. IGG moved quickly to investigate and respond to this incident, assess the security of its systems, and notify potentially affected individuals. In response to this incident, IGG augmented its policies and procedures addressing network security,” the company said in its Friday statement.
“IGG accelerated the implementation of an enhanced managed Security Operations Center including the deployment of an endpoint detection and response platform in response to this event with policies enabled specially for ransomware. IGG immediately reset passwords and employees with privileged access to sensitive systems were enrolled into our multifactor authentication platform,” the statement added.
The company said they are also notifying potentially affected patients so that they may take further steps to protect their information.