UC Health Investigating Possible Records Breach

Sep 4, 2019

UC Health says it is investigating an email phishing incident that may have compromised some patient information.

The healthcare group reports a phishing attack between July 6 and July 12, 2019 led to someone being able to access "a limited number" of employee email accounts.

A computer forensic firm is investigating the breach.

"To date, the investigation has been unable to determine whether the unauthorized person actually viewed any emails or attachments to the emails in the accounts," the health system says in a statement.

"UC Health is in the process of reviewing the emails and attachments in the accounts to identify patients whose information may have been accessible to the unauthorized person. UC Health expects that some patient information is contained in the accounts, including patients' names, dates of birth, medical record numbers and clinical information."

Affected patients will be notified in the coming weeks. UC Health says it has no indication at this time that patient information has been misused. However, if you notice anything amiss in your records you should contact the provider right away.

UC Health also says it is beefing up its email security and employee education about avoiding malicious emails.

A dedicated call center is available at 1-833-496-0187, Monday-Friday from 9 a.m. to 6:30 p.m. EDT.