Phishing Attack Against Baystate Health
Who: Baystate Health of Springfield
# of Accounts Breached: About 12,000 patients
What happened: A phishing incident resulted in unauthorized access to the email accounts of several employees
When it happened: Between Feb. 7 and March 7.
How it happened: A phishing incident resulted in unauthorized access to the email accounts of several employees resulting in the release of Patient names and dates of birth, certain health information and, in some cases, Medicare or Social Security numbers.
Outcome: Baystate says it has received no indication that any of the patient information was misused. But they are urging patients that were affected by the breach to review statements from their providers and insurers to ensure they were not billed for services that they did not receive. The hospital is also offering some patients one year of free credit monitoring and identity protection.