Saint Agnes Health Care Inc. has informed about 25,000 people about an email phishing incident that breached protected health information.
Hackers who targeted employees' email accounts gained access to patient protected information including names, date of birth, general medical record numbers insurance information, limited clinical information and in four cases Social Security numbers.
Saint Agnes has shut down the user name and password for the hacked email account and is investigating.
"We value the privacy and security of patient protected information and we are committed to protecting the confidentiality and privacy of our patients and employees," said Sharon McNamara, corporate responsibility officer at Saint Agnes. "We are taking the necessary and appropriate steps to prevent this type of incident from occurring in the future."