Hospital Employees Fall Prey to Sophisticated Phishing Attack

2019, Breaches, February

Who: Roper St. Francis Healthcare

# of records: 13 Email Accounts Breached

Date: 4 February 2019

What Happened: “Phishing” emails were received by the Roper employees, and they clicked on a given link and then offered their credentials by believing that the requests are legitimate.

How it Happened: Thirteen Roper St. Francis employees fell victim to a large-scale phishing campaign, which was discovered on November 30. Access was blocked upon discovery. Officials said the investigation determined the hacker had access between November 15 and December 15.

Outcome: They immediately took steps to secure the email accounts and began investigating what occurred. A leading and famous forensic security firm was hired by Roper St. Francis. The forensic security firm determined that the email accounts of employees’ contained some information, such as patients’ names, health insurance information, information related to services that the employees received from the Roper St. Francis, medical record numbers, and, in a few cases, financial information as well as the Social Security numbers. As a precautionary measure, Roper St. Francis is offering complimentary identity protection and credit monitoring services to the patients whose personal information (i.e. Social Security number) got affected. In addition, Roper St. Francis is recommending all the patients to review their billing statements that they will receive from their own healthcare providers. Upon reviewing if any services were found that the patient didn’t receive, then Roper St. Francis is asking to immediately contact the provider.