Parathon by JDA eHealth Systems (“Parathon”) is notifying individuals whose information may have been involved in a recent network security incident.
On July 27, 2023, Parathon detected that it was the target of a cybersecurity attack. An unauthorized third party attempted to infiltrate Parathon’s computer network and demand a ransom payment. Upon detecting this incident, Parathon moved quickly to secure the network environment and launched a thorough investigation. The investigation was performed with the help of independent IT security and forensic investigators to determine the scope and extent of the potential unauthorized access to our systems and any personal information.
As a result of the incident, Parathon determined that the following personal information could have been accessed by an unauthorized third party: name, address, date of birth, and/or protected health information. The types of information affected were different for each individual, and not every individual had all of the above-list elements exposed. Importantly, the potentially exposed information does not include passwords, financial account information such as bank account numbers or credit card numbers, or social security numbers.
While the investigation found no evidence that any information has been specifically misused to date, Parathon today is mailing letters to potentially involved individuals with detail about the incident and providing resources they can use to help protect their information. Parathon is also offering potentially involved individuals access to free credit monitoring and identity theft protection services through Cyberscout, a leading identity protection company.
Individuals should refer to the notice they received in the mail regarding steps they can take to protect themselves. As a precautionary measure, potentially impacted individuals should remain vigilant to protect against fraud and/or identity theft by, among other things, reviewing their financial account statements and monitoring free credit reports. If individuals detect any suspicious activity on an account, they should promptly notify the institution or company with which the account is maintained. Individuals should also promptly report any fraudulent activity or any suspected identity theft to proper law enforcement authorities, including the police and their state’s attorney general. Individuals may also wish to review the tips provided by the Federal Trade Commission (“FTC”) on fraud alerts, free security/credit freezes and steps that they can take to avoid identity theft. For more information and to contact the FTC, please visit www.identitytheft.gov or call 1-877-ID-THEFT (1-877-438-4338). Individuals may also contact the FTC at: Federal Trade Commission, 600 Pennsylvania Avenue, NW, Washington, DC 20580.
Parathon is providing a dedicated toll-free call center for potentially affected individuals who have questions, want to enroll in credit monitoring and identity theft protection services, or who want to learn additional steps to protect their information. To contact the call center, please call 1-833-929-2201, between the hours of 8:00 a.m. to 8:00 p.m. Eastern time, Monday through Friday, excluding holidays.
Parathon takes seriously its responsibility to protect the privacy of the information in its care, and understands the frustration, concern, and inconvenience this incident may have caused. To help mitigate the possibility of a similar incident from occurring again, Parathon has implemented additional security measures, revised its policies and procedures relating to the security of its systems and servers, and revised how the organization stores and manages data. Parathon is committed to making our systems more secure than ever before.