Cyber Incident Victim: Proliance Surgeons, Inc.

Proliance Surgeons, Inc. detected a data security incident involving its corporate website, prompting immediate containment efforts and the initiation of an internal investigation. The organization engaged a digital forensics firm to assist in determining the nature and scope of the breach. The investigation revealed that unauthorized access potentially exposed payment card information for customers who used Proliance’s online payment platform between November 13, 2019, and June 24, 2020. The compromised data included cardholder names, payment card account numbers, expiration dates, and zip codes associated with online transactions. No evidence indicated that in-person or telephone payments were affected. The incident exclusively impacted the online payment system, with no exposure of patient healthcare records, protected health information, or other categories of sensitive personal data beyond the specified payment details.

Following the investigation, Proliance coordinated with major payment card brands to implement fraud prevention measures for potentially compromised accounts. The digital forensics team helped identify the incident’s source, enabling Proliance to secure the compromised payment platform. The organization subsequently launched a redesigned website and payment system incorporating enhanced security protocols to reduce future risks. Proliance notified affected customers, advising them to review payment card statements for unauthorized activity and contact their financial institutions if discrepancies were detected. The surgical practice maintained operations across its Washington State care centers throughout the incident response, emphasizing that clinical systems and patient treatment workflows remained unaffected.