In a March 4 news release, ProPath said it disabled access to those emails and required password resets to avoid further unauthorized access.
Through an investigation, it discovered Jan. 28 that one or both of the email accounts were accessed between May 4 and Sept. 14, 2020.
The accessed emails contained patient Social Security numbers, financial account information, birthdates and more. ProPath said there is no evidence any of the compromised data has been misused.
For those whose Social Security numbers were affected, ProPath is offering free access to a credit monitoring system.
“ProPath has taken measures to improve its technical safeguards in order to minimize the risk of a similar incident in the future, including implementing additional technical safeguards on its email system and providing additional training to employees to increase awareness of the risks of malicious emails,” the news release said.
More articles on cybersecurity:
34,000 affected in New Hampshire hospital data breach
Lawsuit alleges Kroger left employee, customer data vulnerable before breach
150,000 security cameras hacked, exposing footage from Halifax Health, other hospitals
