Five-hospital MultiCare Health System, serving the Tacoma, Wash., metropolitan area, is notifying about 1,200 individuals after the email account of one employee was hacked.

 

The organization learned of the attack in late November. As cyberattacks in the healthcare industry have increased, providers often learn that they have been hit when a law enforcement agency investigating one breach discovers other organizations have also been affected.

Also See: Why even top execs are hooked by phishing gambits

Protected health information that may have been compromised includes names, dates of birth, addresses, gender, dates of service, account balances, and diagnoses and treatment information.

Financial information and Social Security numbers were not accessed, and a media notice from MultiCare did not mention whether the system would provide protective services for affected consumers. The organization said it has no evidence that any information has been accessed or misused, but cautioned patients to review their explanation of benefit statements for irregularities.

Also See: The 10 largest healthcare data breaches of 2016

MultiCare now is re-educating employees on security precautions including how to recognize “phishing” emails that appear to be legitimate but launch malware when clicked on. The company did not respond to a request for additional information.

(This article appears courtesy of our sister publication, Health Data Management)

Register or login for access to this item and much more

All Information Management content is archived after seven days.

Community members receive:
  • All recent and archived articles
  • Conference offers and updates
  • A full menu of enewsletter options
  • Web seminars, white papers, ebooks

Don't have an account? Register for Free Unlimited Access