Managed Health Services suffers email HIPAA breach

Featured image

Share this article

hipaa email breach, hipaa email data breach, paubox hipaa breach report

On January 3, 2019, Managed Health Services (MHS) submitted a HIPAA Email Breach to the U.S. Department of Health and Human Services (HHS).

Located in Indianapolis, IN, the email breach potentially affected 31,300 individuals’ protected health information.

MHS is classified as a Healthcare Provider.

According to a notice on MHS’s website:

This is an important notice to inform MHS members. We identified a possible disclosure of protected health information. MHS learned from its vendor, LCP Transportation, that unauthorized persons had gained access to some of their employees’ email accounts. This access took place sometime between July 30 and September 7, 2018. The incident was caused by a phishing attack on the vendor’s systems. The vendor immediately took steps to secure the email accounts and began an investigation, including hiring a computer forensic firm to assist. The investigation concluded that some of your information may have been in the email accounts and that could be accessed. There is no evidence that your information has been misused.

MHS is committed to protecting the privacy and security of our members’ information. On October 29, 2018, MHS learned of this issue and began an immediate investigation. The types of information that may have been in the vendor’s email account could have included name, insurance ID number, address, date of birth, date of service and description of medical conditions. We are working to help prevent something like this from happening in the future. Our vendor has disabled the email accounts affected by this incident. We have tested the email process with them to ensure it is working correctly. Our vendor in making improvements to their system security and conducting employee training about cyber risks.

MHS has no reason to believe any member’s information has been used wrongly. But we want to be careful. MHS is offering 12months of credit and CyberScan monitoring for all impacted members.

View the full notice here.

HHS Wall of Shame

The HHS Wall of Shame is a website under the jurisdiction of HHS that lists all HIPAA breaches reported within the last 24 months. The Wall of Shame displays breaches that are currently under investigation by the Office for Civil Rights.

As part of section 13402(e)(4) of the HITECH Act, the HHS Secretary must post a list of breaches of unsecured protected health information affecting 500 or more individuals.

HIPAA Breach Report

The Paubox HIPAA Breach Report analyzes breaches that affected 500 or more individuals as reported in the HHS Wall of Shame.

Try Paubox Email Suite for FREE today.
Author Photo

About the author

Rick Kuwahara

Rick Kuwahara is COO and Chief Compliancy Officer for Paubox.

Read more by Rick Kuwahara

Get started with
end-to-end protection

Bolster your organization’s security with healthcare’s most trusted HIPAA compliant email solution

The #1-rated email encryption 
and security software on G2

G2 Badge: Email Encryption Leader Fall 2022
G2 Badge: Security Best Usability Fall 2022
G2 Badge: Encryption Momentum Leader Fall 2022
G2 Badge: Security Best Relationship Fall 2022
G2 Badge: Security Users Most Likely to Recommend Fall 2022
G2 Badge: Email Gateway Best Relationship Fall 2022
G2 Badge: Email Gateway Best Meets Requirements Fall 2022
G2 Badge - Users Most Likely to Recommend Summer 2022
G2 Badge: Email Gateway Best Results Fall 2022
G2 Badge: Email Gateway Best Usability Fall 2022
G2 Badge: Email Gateway Best Support Fall 2022
G2 Badge: Email Gateway Easiest To Use Fall 2022
G2 Badge: Email Gateway Easiest Setup Fall 2022
G2 Badge: Email Gateway Easiest Admin Fall 2022
G2 Badge: Email Gateway Easiest to do Business with Fall 2022
G2 Badge: Email Gateway Highest User Adoption 2022
G2 Badge: Email Gateway High Performer Fall 2022
G2 Badge: Email Gateway Momentum Leader Fall 2022
G2 Badge: Email Gateway Most Implementable Fall 2022
G2 Badge: Email Gateway Users Most Likely to Recommend Fall 2022