There has been a massive data breach of Beaumont Health System, compromising the personal and financial information of approximately 112,000 of its patients. Information that was exposed includes medical conditions, bank information, names, dates of birth, and social security numbers.
The data breach occurred between May 23, 2019 and June 3, 2019, when Beaumont employee email accounts were accessed through a "phishing" scam. Phishing occurs when someone is sent an email, phone call, or text message by a person or entity posing as a legitimate institute or person. Once the link is clicked by the target, the hackers often have access to the systems used by the target and can gather sensitive data like social security numbers, credit card details, and passwords.
In this case, as described by Beaumont Health System, the email accounts that were hacked "contained the personal and protected health information of certain patients, including the name, date of birth, diagnosis, diagnosis code, procedure, treatment located, treatment type, prescription information, Beaumont patient account number, and Beaumont medical number." Others contained patients' "social security numbers, financial account information, health insurance information, and driver's license or state identification numbers . . ."
Beaumont Health System discovered the breach in late March 2020, and as of April 17, 2020, was notifying victims of the breach by mail.
Beaumont Health System is the largest health care system in Michigan. It has eight hospitals, 145 outpatient locations, 5,000 doctors, and more than 38,000 employees. Its main facilities are located in Dearborn, Farmington Hills, Grosse Pointe, Royal Oak, Taylor, Trenton, Troy, and Wayne. Beaumont Health System reportedly serves more than 2 million patients.
Patients of Beaumont Health System may be entitled to compensation for this data breach. Often, data breaches on behalf of financial and health institutions are the result of negligent conduct, including a failure to use adequate cybersecurity measures. It is especially important that health care institutions adequately guard against data breaches, as they have a plethora of information related to each patient and each patient whose data is stolen is at risk of identity theft and financial loss.
Alan Holcomb and Brett Turnbull are handling these claims. If you have been notified that you were affected by this data breach, please fill out the contact form on this page or call (404) 793-2566 to obtain more information.