Nashville-based Tennessee Orthopaedic Alliance began alerting 81,146 patients Feb. 14 that their information may have been exposed in a phishing scheme.
In October, TOA discovered unusual activity within its email environment. After an investigation, the group determined that an unauthorized third party had access to two employee email accounts between Aug. 16 and Oct. 14, 2019.
Patient data stored in the email accounts that may have been exposed included names, dates of birth, contact information, Social Security numbers, health insurance information, treatment or diagnostic information and treatment cost information.
TOA said there is no evidence that patient information has been misused. The orthopedic group recommends patients monitor any statements they receive from healthcare providers.