New Data Breach Violates HIPAA Compliance

As reported by Business Wire, the company GenRx Pharmacy experienced a data breach in September and is notifying individuals of the incident.

The company reports that “On September 28, 2020, the pharmacy found evidence of ransomware on its system and immediately began an investigation, including hiring independent information security and technology experts to assist with incident response and forensic investigation.” They also found that ransomware had originally been deployed on their system on September 27, 2020.

GenRx Pharmacy says that it discovered that a small number of files were removed. These files included the health information of former patients, including names, addresses, phone numbers, birthdates, genders, allergies, medications, health plans, and prescriptions. Social security numbers and financial information about patients were not affected.

Are Your Systems Protected?

Business Wire reports that, “the pharmacy has upgraded its firewall firmware, added additional anti-virus and web-filtering software, instituted multifactor authentication, increased Wi-Fi network traffic monitoring, provided additional training to employees, updated internal policies and procedures, and installed real-time intrusion detection and response software on all workstations and servers that access the company network. The pharmacy is also assessing further options to enhance its protocols and controls, technology, and training, including strengthening encryption. Additionally, the pharmacy is notifying applicable state and federal regulatory authorities as well as the three largest nationwide consumer reporting agencies – Equifax, Experian and TransUnion – of the incident.”

According to the Department of Health and Human Services, 137,000 GenRx patients are being informed about the incident via mailed letters, which will include further information.

GenRx is among many companies who have experienced data security breaches in recent years. Regardless of how secure you believe your current system is, hacking methods are always evolving. Let RxTechnology help you develop a plan to keep your data safe and, in the event of a data breach, help you recover.

Let Us Help You with our Wide Array of IT Services

Are you interested in Managed IT ServicesIT SupportIT ConsultingNetwork CablingStructured CablingNetwork SecurityBusiness Intelligence, or other Tech Support for your business in and around San Antonio?  We’d love to help. Get in touch today by calling (210) 828-6081 or clicking here for a free quote!

Changing your password for different websites is a crucial step in protecting your information. Imagine that you have an account with only FIVE different websites: Google, Yahoo, Facebook, Microsoft, and Amazon. On each of these websites, you use the same strong and complicated password, something liek U>wi928ZFP%cjr!.  Maybe you’ve even memorized the password, however complicated it might be.

The Hack

Imagine that one day, one of those five providers experiences a hack. The company, though taking many precautions, has left your information vulnerable. The hackers now have access to each user’s:

  • Login ID
  • Email address
  • Password
  • Password hints/security questions

And now they have access to your account on the service that was hacked.

But that’s not all.


That same information you’ve used to log in to the hacked website is the same information you use to log in to the other four. In fact, most people have accounts on one or more of the major services above. A hacker will know this, and attempt to use the information on more accounts. And very often, they are successful. A security breach on one website can exponentially affect your online security.

Protect Yourself

By using the same password on all of your accounts, you put all of those accounts at risk.

Avoid this by:

  • Using long, strong passwords, of at least twelve characters, randomly generated.
  • Use a different password for every single account you have.
  • Use a password manager like LastPass to keep track of them all for you.
  • Enable two-factor authentication when it’s available.