Network Health has warned 51,232 of its plan customers that a few of their protected health information (PHI) has probably been accessed by illegal people.
In August 2017, a few Network Health Wisconsin-centered workers got sophisticated phishing electronic mails. Two of those workers replied to the scam electronic mail and revealed their login identifications to the assailants, who utilized the particulars to gain access to their confidential email accounts.
The undermined electronic mail accounts stowed a variety of confidential information including names, ID numbers, dates of birth, addresses, phone numbers, and provider information. No Social Security numbers or financial data were included in the undermined accounts, even though certain peoples’ health insurance claim details and claim numbers were possibly accessed.
The breach was disclosed swiftly and the impacted accounts were closed to reduce the harm produced. An outer cybersecurity expert was hired to evaluate the level of the attack and carry out a forensic investigation to check whether access to other portions of the system had been gotten. The case was also made known to police which is also probing the breach.
Network Health’s Chief Administrative Officer, Penny Ransom, stated, “As a consequence of this attack, steps are ongoing to further increase the safety of procedures and avoid future happenings.”
Those safety measures contain re-training the staff to help staff members identify and inform phishing electronic mails. A complete review of safety procedures and processes is also being finished. All people affected by the attack have been provided one year of credit checking and identity thievery safety facilities for free.
In September, Network Health was among three healthcare groups to inform phishing attacks. Morehead Memorial Hospital faced a phishing attack that probably led to the revelation of 66,000 patients’ PHI.