ESO Data Breach Incident
Sarasota Memorial Hospital (SMH) is providing notice of a data security incident reported by ESO, a company that provides software services to SMH and other hospitals across the nation to help improve operations, quality and patient outcomes. We have provided a brief summary of the incident below and contact information to help address your questions and concerns.
On Sept. 28, 2023, ESO detected a ransomware incident, in which an unauthorized third party accessed and encrypted their computer systems. ESO immediately took the affected systems offline, secured their network environment, engaged third-party forensic investigators and began working with federal law enforcement to address the situation. At present, they have found no evidence that personal information has been misused.
What Information Was Involved?
The impacted data varied by individual, but it may have contained personal information, including names, phone numbers, addresses, and some sensitive personal information and/or protected health information.
Who Was Affected?
ESO mailed letters to potentially affected individuals beginning on Dec. 12, 2023. If you receive a letter from ESO, the unauthorized access may have included personal data, including your name, phone number, address, and health information. Each notification letter will include a list of specific data elements that were impacted as well as resources affected individuals may use to protect themselves.
If you do NOT receive a notification letter in the coming days, that means that EOS has NOT identified you as someone whose personal data was impacted by this incident.
What You Can Do?
ESO recommends that all individuals remain vigilant by regularly monitoring account statements and credit history for any signs of unauthorized transactions or activity. In addition, as a precaution, all affected individuals should take advantage of complimentary credit monitoring and identity theft protection services that ESO is offering.
For More Information
ESO representatives are available 9 am to 6:30 pm (Eastern Time) , Monday through Friday, excluding holidays, to help with any questions you may have. Call their Helpline at (866) 347-8525 or visit www.eso.com/notice-of-cybersecurity-incident for more information.