Four things to know:
- A phishing incident on March 8 gave an unauthorized third party access to the firm’s email accounts until the breach was discovered April 26, according to a July data breach notice.
- On April 26, the company detected an attempted unauthorized wire transfer of ClearBalance funds, but the hackers were unsuccessful.
- The company hired a forensic investigator, which uncovered that accessed email accounts contained personal information. The hack did not involve the database that hosts the medical record systems of any hospital or healthcare provider. Exposed data may include Social Security numbers, driver’s license information, healthcare account numbers and more.
- In response to the breach, the company changed the passwords for the hacked email accounts. The company also implemented stronger access controls to its network and updated its procedures for reporting suspicious activity. The email network was secured April 26, the investigation determined.
At the Becker's 11th Annual IT + Revenue Cycle Conference: The Future of AI & Digital Health, taking place September 14–17 in Chicago, healthcare executives and digital leaders from across the country will come together to explore how AI, interoperability, cybersecurity, and revenue cycle innovation are transforming care delivery, strengthening financial performance, and driving the next era of digital health. Apply for complimentary registration now.
