Cyber Intrusion Information
Cyber Intrusion Information
[archiving pages to remove from viewing and search, but keepign info available if needed in future - 11/19/2014 - kma]
Frequently Asked Questions Regarding Compromised Credit/Debit Card Information
Who was affected by the intrusion?
Some individuals who paid MUSC online or over the phone via credit/debit card, between the dates of June 30, 2013 and August 21, 2013.
Who was not affected by the breach?
Individuals who paid with a credit/debit card in person and individuals who paid an MUSC bill by check or cash are not affected.
Was I Affected?
What personal information may have been compromised?
Credit/debit card number, expiration date, CVV2 (Authorization number), name, billing address, and email address.
What information was not compromised?
Based on information that we have received to date, health information, date of birth and social security information was NOT compromised in this intrusion.
How do I find out if my information or the information of a patient for whom I paid a bill, has been compromised?
If you have provided MUSC with a current phone number, you will be contacted by phone and you will also receive a formal notification letter by mail with additional information and instructions.
Is it safe to pay with a credit card when I visit MUSC?
Yes. All current methods of payment are safe. Any method of payment compromised by the intrusion has been shut down.
What is being done to protect people who have had information compromised?
MUSC is providing individuals whose information was compromised in the intrusion with free enrollment in a credit protection, monitoring and restoration service program through Experian. If you are identified as an individual whose information was compromised, the cost of an initial one year membership/enrollment fee will be paid for you. Protection will be provided for one year at no charge. Details on enrollment will come to you in the mail with your formal notification letter.
In the meantime, you can safeguard your information by calling your credit/debit card provider and alerting them to the possibility of compromise.
I have received a notification letter. What other steps should I take on my own beyond signing up for the free protection services?
The South Carolina Department of Revenue’s website lists the following additional steps you can take to further protect your identity (http://www.sctax.org/NR/rdonlyres/6EFA91A0-079B-415E-A5ED-FCD9ADB332D1/0/breachFAQ_20130318.pdf ):
- Regularly monitoring your credit reports (under federal law, individuals are entitled to one free credit report once a year from each of the three major credit bureaus; credit reports can easily be obtained by contacting the credit bureaus (contact information provided below), or by visiting www.annualcreditreport.com or by calling 1-877-322-8228. You may stagger your requests for each of these free credit reports so that you receive one report every four months. You should also know that you have the right to file a police report if you ever experience identity fraud. Please contact law enforcement for further details if such incident should occur.
- Monitor your accounts and/or contact your credit/debit card issuer.
- When credit card or debit card information is compromised, the best protection is to obtain a new card with new card numbers.
- If you detect any unauthorized charges on your account(s), please contact your bank or credit/debit card issuer; usually a contact number will be provided on the back of your credit/debit card.
- Place fraud alerts with any one of the three major credit bureaus.
- You can place a fraud alert with one of the three major credit bureaus by phone or by visiting their website. There is no need to alert all three credit bureaus as when you alert one credit bureau, the other two will also be notified.
- Place a freeze on your credit files with each of the three credit bureaus. A credit freeze will prevent anyone from accessing your credit, however, you will not be able to borrow money or obtain instant credit until you either lift or thaw the freeze.
The three major credit bureaus you may wish to place a fraud alert with are:
Experian Fraud Reporting 1-888-397-3742 www.experian.com
Equifax Fraud Reporting 1-800-525-6285 www.equifax.com
TransUnion Fraud Reporting 1-800-680-7289 www.transunion.com
Additional information regarding your rights related to debit and credit card fraud has been provided by the South Carolina Department of Consumer Affairs and can be viewed here http://www.consumer.sc.gov/consumer/PressRelease/Documents/2013/13024.pdf
Will anyone be calling me and asking for personal information regarding the cyber theft?
NO. Never give your personal information to anyone claiming to be contacting you regarding this intrusion. MUSC will not initiate phone calls to you asking for your personal information. However, if you call MUSC directly for more information, you will be asked to verify your identity.
If I want to talk to someone immediately, who do I call?
Call 843-792-6200 or toll free 1-800-868-5051