#1243106: Security breach exposed patient information at Sacred Heart Rehabilitation sites in Michigan
A security breach at Sacred Heart Rehabilitation Center has compromised some patients' personal and medical information, including Social Security numbers, full names and addresses, the organization said.
Sacred Heart employs more than 300 people and offers HIV/AIDS care services and substance abuse treatment services. It has locations in Saginaw, Bay City, Flint, Algonac, Berrien Center, Madison Heights, New Haven, Port Huron, Richmond, St. Clair Shores and Watervliet.
Sacred Heart officials notified “a limited number of patients about a security incident involving a phishing scheme, which affected a Sacred Heart Rehabilitation Center employee’s email account between April 5, 2018 and April 7, 2018."
An investigation revealed the compromised email account contained some patients' information, including full names, addresses, health insurance information, medical treatment information, medical diagnostic information and/or Social Security numbers, according to the news release.
Letters were sent to affected patients this week. It’s unclear how many patients were affected.
Nearly 7,000 people received treatment from Sacred Heart in 2018.
Sacred Heart officials are not aware of any reports of identity fraud or improper use of information as a direct result of this breach, the release states. The patients whose Social Security numbers were compromised may enroll in a credit monitoring and identity theft-restoration service at no cost to them.
Sacred Heart officials say they are “committed to maintaining the privacy and security of patient information.” The organization has implemented additional employee training and security measures to minimize the risk of a similar incident in the future.
A dedicated toll-free response line, 844-416-6280, has been set up to answer patients' questions from 8 a.m. to 5 p.m. Monday through Friday.
|Date added||Jan. 11, 2019, 7:44 a.m.|