Sinai Health System has notified the federal government of a data breach that exposed the personal information of 12,578 people.
The health care network said in a news release the breach happened Oct. 16 after “an unknown third party gained unauthorized access to two employee email accounts.”
A letter was sent to patients notifying them their names, addresses, date of births, Social Security numbers, health information or health insurance information were left exposed during that period of “unauthorized access.”
The hacking incident was reported Dec. 13 to the U.S. Department of Health and Human Services Office for Civil Rights. Federal law requires health care providers report breaches of protected health information of 500 people or more within 60 days.
Sinai Health Systems declined to comment further but said in a news release it conducted an investigation and “found no evidence that any patient’s information was removed from Sinai Health System’s email accounts or systems.”
The health care network said it has taken precautions to prevent future hackings that include resetting employee email passwords, training employees and improving email filtering processes.
Sinai Health System consists of Sinai Medical Group, Holy Cross Hospital, Schwab Rehabilitation Hospital and Mount Sinai Hospital, which serve the West and Southwest Sides.
Patients who want to learn more about the incident can call toll free 833-991-0975. The call center is available 8 a.m. to 8 p.m. Monday through Friday.
Manny Ramos is a corps member in Report for America, a not-for-profit journalism program that aims to bolster Sun-Times coverage of issues affecting Chicago’s South and West sides.