Metropolitan Jewish Health System (MJHS) in Brooklyn, N.Y., was the victim of a phishing attack in January.
On Jan. 22, MJHS first learned that a “phishing” email was sent to an employee of an MJHS participating agency who responded to the email on Jan. 18, thinking that it was a legitimate request, according to a hospital statement. The system secured the employee's email account and began an investigation as soon as it learned of the incident.
"We conducted a thorough review of the employee’s email account and confirmed that the emails in that account contained information that may have included MJHS member and patient names, member numbers, diagnoses, treatment dates, and the facility where members were recently treated. MJHS continues to review other employees’ email accounts and will advise if any additional information, members or patients are affected."
All MJHS employees have been reeducated regarding “phishing” emails, according to MJHS, and "we are reviewing enhancements for strengthening user login authentications."
Editor
Editor Beth earned a bachelor’s degree in journalism and master’s in health communication. She has worked in hospital, academic and publishing settings over the past 20 years. Beth joined TriMed in 2005, as editor of CMIO and Clinical Innovation + Technology. When not covering all things related to health IT, she spends time with her husband and three children.