An investigation into the data breach at Rady Children's Hospital in San Diego last week discovered an earlier data breach occurring in August, November and December 2012, according to a report by The San Diego Union-Tribune.
In the 2012 data breach, a different employee emailed a training exercise with private data of 6,307 patients on it to three job candidates, and six more candidates saw the data when they came to the hospital and used the computers. The data included names, discharge dates, insurance company names and account balances, according to the report.
Rady Children's spokesperson Ben Metcalf said in the report the employee associated with the earlier incident did not realize the information emailed was protected health information while the employee in the most recent incident erroneously attached the wrong file to an email.
The hospital will provide additional employee training to help prevent future data breaches, according to the report.
More Articles on Data Breaches:
Medtronic Computer System Hacked Twice Last Year
HHS' Data Breach Report: 7 Key Findings
What is the Most Common Cause of Data Breaches?