Phishing Attack on Frederick Regional Health System (FRHS) Compromises Hospice Patients

2019, Breaches, March

Who: Frederick Regional Health System

# of Accounts Breached:

What was affected: Patient names, health care companies, health care numbers and Social Security numbers

When it happened: Between June 2017 to January 2019

How it happened: An unauthorized person accessed an employee’s email account through phishing.

Outcome: The health system is offering credit monitoring and identity protection services for a year to eligible patients. Frederick Regional Health System is also advising affected patients to review the statements they receive from their health insurers. If they see services they did not receive, they should contact the health insurer immediately.