Data Breach Affects Over 1,000 Veterans at Amarillo VA and Other Facilities

The Veterans Health Administration (VHA) has reported that over 1,000 veterans linked to the Amarillo VA Healthcare System may have had their personal information compromised due to a cybersecurity breach involving the contracted medical transcription vendor, DBP, Inc.

A breach affecting 2,302 veterans nationwide involved encrypted files on DBP’s server that held sensitive information, such as names, medical records, and Social Security numbers. Nearly half of those affected were patients of the VA Amarillo Healthcare System, which includes facilities in Amarillo, Lubbock, Childress, Dalhart, and Clovis, New Mexico.

The VHA has confirmed that the breach did not affect medical records within the VA’s electronic health system. The attack was limited to the vendor's server, which was swiftly taken offline and disconnected from the internet to avert any further damage. DBP, Inc. has enhanced its hardware and fortified its security protocols.

Veterans affected are receiving Privacy Notification Letters that outline the information that may have been compromised. Veterans in need of assistance may contact 1-844-838-5433 during business hours to connect with local privacy officers.

Alongside Amarillo, 616 veterans from the VA Minneapolis, Connecticut, Boston, and Baltimore Healthcare System were similarly impacted. The Department of Veterans Affairs is collaborating with the vendor to enhance cybersecurity measures, aiming to prevent similar breaches moving forward.