Cambridge Health Alliance Experiences PHI Breach

April 5, 2018


Law enforcement organizations have alerted Cambridge Health Alliance that the protected health information of a few of its subscribers has been taken by an illegal person.

Everett Massachusetts Police Division warned, on January 31, 2018, Cambridge Health Alliance that the data included the protected health information of a few of its patients had been known in the custody of a hacker unapproved to possess the data in question. After being told of the breach, the Cambridge Health Alliance carried out an internal inquiry into the breach as well as reviewed the files.

One of the files, at least, had data that referred to fiscal details which included patients’ names, costs of healthcare services, employer information, Social Security numbers, birth dates, addresses, as well as discharge details. The information in question pertained to the 2013 billing period.

A breach notice transmitted to impacted people by the law company BakerHostetler on behalf of Cambridge Health Alliance said that HIPAA breach targeted 4 people from New Hampshire, who have been offered credit checking as well as identity theft protection facilities through Experian free of charge.

Although the breach notice submitted discloses that only four people were targeted, the Boston Globe has announced that notification letters have been sent to an estimated 2,500 patients. The information concerning the breach is the same in addition to the number of people targeted.

Boston Globe also disclosed that Cambridge Health Alliance spokesman David Cecere verified that the inquiry is continuing it is still not clear how the information came to be gotten. Cecere disclosed that it might have been a hack or the information might have been made public in mistake.

In addition to the internal inquiry finished, Cambridge Health Alliance has employed a computer forensics consultancy company to help the attempts to decide precisely how the data was made public.