In October, TOA discovered unusual activity within its email environment. After an investigation, the group determined that an unauthorized third party had access to two employee email accounts between Aug. 16 and Oct. 14, 2019.
Patient data stored in the email accounts that may have been exposed included names, dates of birth, contact information, Social Security numbers, health insurance information, treatment or diagnostic information and treatment cost information.
TOA said there is no evidence that patient information has been misused. The orthopedic group recommends patients monitor any statements they receive from healthcare providers.
More articles on cybersecurity:
Texas provider alerts 6,500 patients of phishing attack
Connecticut payer alerts 1,100 members of phishing attack
10 tips for hospitals to mitigate ransomware attacks
