Data Breaches at Parker-Hannifin, Behavioral Health Partners of Metrowest and Vail Health

Parker-Hannifin Cyberattack Impacts Approximately 120,000 Health Plan Members

Parker-Hannifin Corporation based in Cleveland, OH, a maker of motion and control technologies, just reported that unauthorized persons have acquired access to a part of its IT systems and might have acquired files comprising the sensitive data of present and past workers, their dependents, and other people connected with the firm.

Suspicious activity was noticed inside its IT system on March 14, 2022. The forensic investigation confirmed that unauthorized persons accessed its systems between March 11, 2022 and March 14, 2022. A detailed assessment of the impacted files confirmed they included data like names, birth dates, addresses, driver’s license numbers, Social Security numbers, passport numbers, financial account data like bank account and routing numbers, and internet account usernames and passwords. Present and previous Parker Group Health Plan members, those of a health plan sponsored by an organization bought by Parker, might furthermore have had their enrollment details exposed, including medical insurance plan member ID number along with dates of coverage.

The breach report has been submitted to the HHS’ Office for Civil Rights showing that 119,513 group health plan members were affected. Victims have been informed and provided a free membership to Experian’s IdentityWorks identity theft protection and resolution services for two years.

Data Theft Incident Announced by Behavioral Health Partners of Metrowest

Behavioral Health Partners of Metrowest (BHPMW) based in Framingham, MA has advised 11,288 people that unauthorized persons copied a part of their protected health information (PHI) from its systems. BHPMW knew about the information breach on October 1, 2022 when the forensic investigation affirmed that the unauthorized individual obtained access to its systems and extracted data on September 14 and also on September 18, 2021.

The stolen information is associated with the Behavioral Health Community Partner Program that BHPMW manages as per agreement with MassHealth, in cooperation with the Family Continuity, Spectrum Health Systems, Advocates, SMOC, Wayside Youth and Family Support provider institutions and contained names, dates of birth, addresses, Social Security numbers, client ID numbers, health insurance data, and medical diagnosis/treatment details. BHPMW is uninformed of any attempted or actual improper use of the stolen data.

Notification letters were mailed to impacted persons on May 11, 2022, and those people were provided free credit monitoring and identity protection services.

17,000 Individuals Impacted by Vail Health Services Data Security Incident

Vail Health in Colorado experienced a data security incident that contributed to the compromise and probable stealing of the PHI of 17,039 individuals. Vail Health mentioned it began suffering from trouble with its network systems and started an investigation which showed on April 5, 2022, that an unauthorized person had obtained access to its networks on February 11, 2022.

The breached systems comprised some files that involved details concerning people who got COVID-19 testing from Vail Health, for instance, names, birth dates, contact data, encounter numbers, and COVID-19 testing data. No financial details, medical insurance data, or Social Security numbers were breached or compromised.

The systems presently had settings that limited access to a few persons. Supplemental security steps have currently been carried out to further minimize access.

Elizabeth Hernandez

Elizabeth Hernandez is the editor of HIPAA News section of HIPAA Coach and an experienced journalist in the healthcare sector. She specializes in healthcare and HIPAA compliance, making her a go-to source for information on healthcare regulations. Her work focuses on the importance of patient privacy and secure information handling. Elizabeth also has a postgraduate degree in journalism. Follow on Twitter: You can follow Elizabeth on twitter at