The Tulsa-based Oklahoma State University Center for Health Sciences began mailing letters Jan. 5 to some of its Medicaid patients after it learned an unauthorized third party gained access to some folders stored on its computer network in November.
Those folders held Medicaid patient billing information, which may have included patients' names, Medicaid numbers, healthcare provider names, dates of service and limited treatment information. The folders did not contain medical records or financial information; however, one Social Security number was contained on the server.
The center doesn't have any evidence the information has been inappropriately used, but out of an abundance of caution, it has established a dedicated call center to address patients' concerns.
"Patient confidentiality is a critical part of our commitment to care and we work diligently to protect patient information. We apologize for any concern or inconvenience this incident may cause our patients. Since this incident, we have implemented additional security measures to enhance the protection of our patient information," reads a notice on the organization's website.
Becker's Hospital Review reached out to the Oklahoma State University Center for Health Sciences. This article will be updated as more information becomes available.
More articles on cybersecurity:
Intel faces 3 class-action lawsuits in wake of chip flaws
Hackers expose 30k Florida Medicaid patients' files
Medical device supplier DJO Global notifies Las Vegas hospital of lost patient data