A trusted medical transcription service, Perry Johnson & Associates (PJ&A) offers written solutions for those in the medical field. Three weeks ago, Chicago’s Cook County Health announced they learned of a potential PJ&A data breach; the numbers are back, with more than 1.2 million people potentially exposed.
Although PJ&A provided services to Cook County Health, the hackers accessed none of the CCH systems. Instead, PJ&A experienced the breach. An unauthorized actor entered the PJ&A systems, where they stored some patient data, subsequently exposing associated parties. There is still no further detail on how the assailants made the attack possible, but past breaches point to sophisticated hacking.
From around March 27th to May 2nd, 2023, an unauthorized party accessed the PJ&A systems. Around May 2nd, PJ&A learned of the breach and began to secure their systems. On May 22nd, PJ&A determined the attack may have involved consumer data and notified CCH. CCH then retroactively ended its relationship with PJ&A.
PJ&A concluded their internal reviews and have determined the breach may have exposed more than 1.2 million people. The specific information in the breach varies between individuals, but signs point to patient victims.
Although we know the number of potential victims from the attack, the entire scope is not public. Patients in the Chicago area must take action to protect themselves from the consequences of the breach. They should hire monitoring services, update passwords, and enable all multi-factor authentications.