An investigation into the May cyberattack against University of Missouri Health Care indicates that sensitive personal information — including Social Security numbers — of some patients was compromised.
(TNS) — University of Missouri Health Care reported Friday that it has been working to determine the damage from a data breach that occurred between May 4 and May 6.
In a news release, MU Health wrote that on Aug. 28 it completed the process and found that the stolen information could include names, birth dates, account numbers, health insurance information, and, for some patients, a Social Security number and/or driver's license number.
The hack was accomplished through a phishing attack on employee email accounts, the release stated. This incident did not affect all MU Health Care patients, but only those patients who had information contained in the compromised email accounts, the release stated.
There is no indication the information has been misused, the release stated. MU Health Care has notified patients with potentially stolen information and is providing credit monitoring to those people at no cost.
"MU Health Care also recommends patients review any statements they receive from their health insurers or health care providers," the release stated. "If they see charges for services they did not receive, patients should contact the insurer or provider immediately."
MU Health Care has established a dedicated call center to answer any questions individuals may have about the incident. Individuals can call 1-888-977-0634, between 8 a.m. and 5:30 p.m. Monday through Friday. Additional information is posted on the MU Health Care website, muhealth.org/data-security-incident.
©2020 Columbia Daily Tribune, Distributed by Tribune Content Agency, LLC.
Looking for the latest gov tech news as it happens? Subscribe to GT newsletters.