We review vendors based on rigorous testing and research but also take into account your feedback and our affiliate commission with providers. Some providers are owned by our parent company.
Learn more
vpnMentor was established in 2014 to review VPN services and cover privacy-related stories. Today, our team of hundreds of cybersecurity researchers, writers, and editors continues to help readers fight for their online freedom in partnership with Kape Technologies PLC, which also owns the following products: ExpressVPN, CyberGhost, and Private Internet Access which may be ranked and reviewed on this website. The reviews published on vpnMentor are believed to be accurate as of the date of each article, and written according to our strict reviewing standards that prioritize professional and honest examination of the reviewer, taking into account the technical capabilities and qualities of the product together with its commercial value for users. The rankings and reviews we publish may also take into consideration the common ownership mentioned above, and affiliate commissions we earn for purchases through links on our website. We do not review all VPN providers and information is believed to be accurate as of the date of each article.
Advertising Disclosure

vpnMentor was established in 2014 to review VPN services and cover privacy-related stories. Today, our team of hundreds of cybersecurity researchers, writers, and editors continues to help readers fight for their online freedom in partnership with Kape Technologies PLC, which also owns the following products: ExpressVPN, CyberGhost, and Private Internet Access which may be ranked and reviewed on this website. The reviews published on vpnMentor are believed to be accurate as of the date of each article, and written according to our strict reviewing standards that prioritize professional and honest examination of the reviewer, taking into account the technical capabilities and qualities of the product together with its commercial value for users. The rankings and reviews we publish may also take into consideration the common ownership mentioned above, and affiliate commissions we earn for purchases through links on our website. We do not review all VPN providers and information is believed to be accurate as of the date of each article.

HMG Healthcare Reports Theft of Unencrypted Patient Data

HMG Healthcare Reports Theft of Unencrypted Patient Data
Author Image Hendrik Human
Hendrik Human Published on 19th January 2024 Cybersecurity Researcher

Texas-based care provider HMG Healthcare recently disclosed a major security breach where hackers accessed and stole unencrypted patient data. Although the company is still investigating the exact nature of the stolen data, it confirmed that it involved sensitive information regarding both patients and staff.

The data breach occurred in August 2023, with HMG only becoming aware of it in November of that same year. According to HMG’s statement, the breached data likely includes “medical records and personal information.” This could include names, dates of birth, contact information, medical records, social security numbers, and employment records.

HMG’s filing to the Texas Attorney General’s Office revealed that 75,000 Texans were impacted by the breach, as reported by TechCrunch.

To date, there is no clarity on the exact nature of the data stolen, potential suspects, or how the breach occurred. The care provider’s statement only admits that “HMG attempted to identify the specific data that was compromised but we have now determined that such identification is not feasible.”

HMG claims that it “quickly identified” the breach and fully investigated the incident. The company has taken steps to “mitigate any potential harm” and protect against future breaches. This includes a review of its “policies, procedures, and safeguards to “ensure the security and integrity of electronic health information.”

Residents and employees potentially impacted by the breach have been mailed notices. HMG also published press releases and official statements on its website for those with insufficient or outdated contact information. However, the notice urges potential breach victims to take steps to protect themselves. For example, by monitoring their account statements and credit bureau reports.

HMG Healthcare is located in Woodlands, Texas. According to its website, it operates 37 nursing facilities across Texas and Kansas, with over 3,500 residents and 4,100 employees. Its notice lists 40 facilities implicated in the breach, including those run by affiliates.

This is another example in a worrying trend of hackers targeting healthcare facilities. We reported on a similar data breach involving HealthEC LLC just last week.

About the Author

Hendrik is a writer at vpnMentor, specializing in VPN comparisons and user guides. With 5+ years of experience as a tech and cybersecurity writer, plus a background in corporate IT, he brings a variety of perspectives to test VPN services and analyze how they address the needs of different users.