The Portland, Maine healthcare provider InterMed is informing about 30,000 patients that some of their PHI has been involved in a data breach.
The facility learned on September 6, 2019 that an employee’s email account had been hacked a few days prior, which led to several other accounts also being breached between September 7-10. An investigation was started, and it was determined the attacker could have viewed emails and attachments from the accounts but it was not determined exactly what data was compromised.
The information potentially exposed included patient names, dates of birth, health insurance information, and/or clinical information. Social Security numbers belonging to a very limited number of patients were also found in the accounts, InterMed said in a statement.
The incident did not impact InterMed’s electronic health records. About 30,000 people were affected, according to NBC’s News Center Maine.