Ashland, Ky.-based Bon Secours Health System has notified nearly 700 patients of a potential data breach after discovering a former employee inappropriately accessed the system's billing database.
The system discovered the username and password of a former employee were used to access the billing system between April 2013 and March 2014, compromising patient names, birth dates and the last four digits of their Social Security numbers. Additionally, the former employee was able to access the times of services, providers, facility names and treatment information of a small group of patients.
Bon Secours initiated an investigation with the help of the Secret Service and determined there was no evidence of criminal use of patients' information.
More articles on data breaches:
Highmark subsidiary reports data breach affecting 75k patients
6 considerations for a hospital’s playbook to combat data breaches
The individual cost of a data breach: $19k