Evansville Medical Center Hack Reveals HIPAA Files of 4,400

Hackers have accessed the E-mail accounts of a lot of workers of the St. Mary’s Medical Center in Evansville, Indiana, leading in the PHI of roughly 4,400 patients potentially being revealed.

Randy Capehart, a spokesperson for St. Mary’s Medical Center, released a statement declaring the HIPAA break to the media. In the statement, he described the kind of the attack as well as the data that was possibly revealed.

The E-mail accounts retrieved by the cyberpunks had Protected Health Information along with private identifiers as well as some Social Security numbers. Even though the data revealed differed from person to person, the information generally contained names, dates of birth, gender, health, and insurance info.

The attack happened in January and all patients impacted by the break are being informed by mail. They have been presented one year of credit as well as identity security services in case they had their Social Security numbers exposed. All other people will be eligible to get a free credit statement from each of TransUnion, Equifax, and Experian.

The break was identified swiftly and accessibility to the E-mail accounts was closed quickly, restricting the chance for thieves to gain access of PHI, even though it isn’t clear at this point how swiftly access was ceased and whether thieves were capable to download info.

Although the problem was quickly recognized, it took some time for the hospice to conclude if any information had actuality been compromised in the event.

During the inquiry, it concluded that the cyber-attack was of a “sophisticated” type and that cyberpunks had accessed to the accounts through “fraudulent E-mail communications.”

A forensic inquiry is ongoing in an effort to conclude whether data was copied or accessed and attempts are being made to decide the identity of the cyberpunks so they can be brought to justice. According to St. Mary’s, thus far no one has informed any medical or identity theft even though crimes of this type don’t tend to happen instantly, and when they actually do it can take some time for the scam to be exposed.

The hospice has set up a helpline – 1-877-643-2062 – for anybody looking for more information concerning the data break.

Link copied to clipboard
Photo of author

Posted by

Mark Wilson

Mark Wilson is a news reporter specializing in information technology cyber security. Mark has contributed to leading publications and spoken at international forums with a focus on cybersecurity threats and the importance of data privacy. Mark is a computer science graduate.