Diabetes device manufacturer notifies 140,000 patients of phishing attack

Device manufacturer Tandem Diabetes Care began alerting 140,781 patients that their personal information may have been exposed in a phishing attack.

In January, Tandem Diabetes Care discovered that an unauthorized person had gained access to an employee’s email account. After an investigation, the manufacturer determined that the unauthorized person had access to a limited number of employee email accounts between Jan. 17 and Jan. 20.

Patient data stored in the email accounts that may have been exposed included names, services provided, clinical information and Social Security numbers.

Since the incident, Tandem Diabetes Care has implemented additional email security controls and strengthened its user authorization and authentication process. The manufacturer recommends patients review any billing statements they receive from healthcare providers.

More articles on cybersecurity:
State-by-state breakdown of ransomware attacks on healthcare providers
5 recent data breaches caused by human error
Indiana hospital alerts 2,600 patients of human error data breach

© Copyright ASC COMMUNICATIONS 2020. Interested in LINKING to or REPRINTING this content? View our policies by clicking here.