Phishing attack compromises data at Massachusetts clinic

Reliable Respiratory in Norwood, Mass., discovered unusual activity on an employee's email account in July, which may have allowed hackers to access an undisclosed number of patients' protected health information.

Through a phishing campaign, hackers gained access the employee's email account between June 28 and July 2. Fifteen different types of protected health information — including name, bank or financial account information, diagnosis, treatment information, medication or prescription information, driver's license or state identification number, Social Security number, patient claim or billing information, date of birth, credit or debit card information, username and password, health insurance information, medical record number, and passport number — were affected.

The clinic is notifying the affect individuals, and plans to offer them access to resources to help protect their personal information.

"While Reliable has security measures in place to protect information in its care, it is also taking steps to implement additional safeguards and review its policies and procedures to protect the security of information on its systems," the clinic said in a news release.

More articles on cybersecurity:

New ransomware strain masquerades as Barack Obama
UPenn Health System's CISO on the 'human element' of cyberattacks & new IS threats to hospital systems
CISOs from 6 leading hospitals to create cybersecurity guidelines for vendors

© Copyright ASC COMMUNICATIONS 2020. Interested in LINKING to or REPRINTING this content? View our policies by clicking here.

 

Top 40 Articles from the Past 6 Months