On Nov. 12, Baltimore-based LifeBridge Health learned the third party had accessed some employee email accounts from Aug. 27 to Sept. 21. The email accounts, according to a Jan. 10 news release, contained patients’ names and one or more of the following: dates of birth, dates of service, Social Security numbers, medical record numbers, health insurance claim numbers and limited treatment information.
LifeBridge Health said no patient EHRs were involved in the incident.
The health system began notifying all affected patients on Jan. 10.
