70,000 Patient Records Breached Due To Hacked Kaiser Permanente Email Account

Share post:

Kaiser Permanente, the biggest nonprofit health plan provider in America, recently announced a data breach that exposed highly sensitive health information of close to 70,000 patients.

In a June 3 notice sent to patients, Kaiser disclosed that a hacker was able to gain access to an employee’s emails at the Kaiser Foundation Health Plan of Washington on April 5. This contained protected health information such as patient names, dates of service, medical record numbers and lab test results information. However, according to the healthcare provider, financially sensitive information like social security and credit card numbers, was not exposed by the breach.

The company has kept mum on the scale of the breach, but a separate filing with the U.S. Department of Health and Human Services confirmed that 69,589 individuals were impacted.

“We terminated the unauthorized access within hours after it began and promptly commenced an investigation to determine the scope of the incident,” Kaiser said in its notice. 

Kaiser has also not discussed how an unauthorized third party was able to gain access to the employees’ emails. However, it said that the hacked employee “received additional training in safe email practices,” suggesting the breach may have been performed via credential stuffing or phishing.

The company has also not commented on why it took them almost two months to inform patients about the breach.

Kaiser Permanente is the latest in a long line of healthcare providers whose private data had been breached by hackers. 

For more information, read the original story in Techcrunch.

SUBSCRIBE NOW

Related articles

Shopify Faces A Class Action In California

A U.S. appeals court has reinstated a proposed data privacy class action against Canadian e-commerce company Shopify, allowing...

Anthropic Warns: AI “Virtual Employees” Could Pose Security Risks Within a Year

Anthropic, a leading artificial intelligence company, anticipates that AI-powered virtual employees could begin operating within corporate networks as...

Hertz Data Breach Exposes Customer Information via Supply Chain Hack

Hertz has disclosed a data breach resulting from a cyberattack on its vendor, Cleo Communications, which compromised sensitive...

Google’s New Security Feature – Automatic Reboot

Google is introducing a new security feature in its latest Android update that will automatically reboot phones and...

Become a member

New, Relevant Tech Stories. Our article selection is done by industry professionals. Our writers summarize them to give you the key takeaways