Chicago Healthcare Provider Reports Data Breach

A data breach at a Chicago healthcare provider may have exposed the personal health information of 12,578 people. 

Sinai Health System was breached in a cybersecurity incident that occurred in the fall of 2019. Hackers are thought to have gained unauthorized access to the organization’s email via a phishing attack.

Patient data that was stored in the email accounts and may have been exposed included names, addresses, dates of birth, Social Security numbers, health information, or health insurance information.

The healthcare provider became aware that two of its employees had been taken in by a phishing scam that struck in October. 

In a statement released by Sinai Health System on December 19, the company wrote: "Sinai Health System (Sinai) has become aware of a potential data security incident that may have resulted in the inadvertent exposure of some patients’ personal and health information. 

"On October 16, 2019, forensic information technology experts determined that patient information could be at risk after an unknown third party gained unauthorized access to two employee email accounts." 

Following the discovery of the malicious attack, hospital officials took steps to secure the email accounts and reset passwords. Sinai Health System has also reviewed and revised its information security policies and procedures, including email retention procedures. 

Employees of the healthcare provider were given additional cybersecurity training following the attack to reduce the risk of further breaches' occurring. The organization has also enhanced the filtering protocols for its email accounts.

An investigation into the incident launched by Sinai Health System uncovered no ..

Support the originator by clicking the read the rest link below.