Roper St. Francis on July 8 discovered that an unauthorized individual gained access to the employee’s email account between June 13 and June 17, according to the statement on the hospital’s website.
As a result of the incident, personal information of patients, including names, medical record or account numbers, dates of birth, diagnoses and limited clinical and/or treatment information was accessible to the unauthorized user. A limited number of patients’ health insurance information and Social Security numbers were exposed.
Roper St. Francis said it is providing free credit-monitoring and identity protection services to patients whose Social Security numbers were exposed.
“We regret any concern or inconvenience this incident may cause,” the hospital stated. “We remain committed to protecting the confidentiality and security of our patients’ information. To help prevent this from happening again, we are enhancing our email security and providing continued education to our staff on email protection.”
More articles on cybersecurity:
Blackbaud ransomware attack affects 108,483 individuals at Northwestern Memorial, Spectrum Health
Illinois nurse claims she was fired for refusing to violate HIPAA: 4 details
Texas hospital loses box with radiology images, exposing 1,768 patients’ info: 5 details