The medical center discovered June 24 that an unauthorized third party had gained access to an employee’s email account.
Patient data that may have been affected included names, addresses, Social Security numbers, telephone numbers, medical records, insurance information, bank accounts and other personal information.
Navicent Health is offering affected patients free identity theft screenings.
“Privacy and security are a top priority for Navicent Health. Upon discovery of the phishing email, Navicent Health immediately took action to stop the unauthorized access to the account, changed the password and enhanced its security controls. Navicent Health also notified the FBI regarding the matter. Navicent Health is committed to keeping its workforce informed of privacy and security issues and continues to provide privacy and security education to its employees,” the hospital said in a statement.
More articles on cybersecurity:
AMCA data breach scope expands, Florida lab testing company alerts 30,000 patients
Arizona State University alerts 4,000 students of data breach
Patient records at Connecticut health system potentially exposed in shipping mishap
