Goshen Health Data Breach Potentially Exposes 9,160 Patients’ Sensitive Records

Identity theft is a multi-billion dollar problem.  Although many companies have responded to this threat appropriately, some continue to risk theft of the sensitive personal and medical information entrusted to them by consumers and patients.  Unfortunately, it appears Goshen Health in Indiana failed to protect the sensitive patient information of approximately 9,160 patients.

According to Goshen Health, “[a]n unauthorized third party may have potentially accessed two Goshen Colleagues’ email accounts from approximately August 2, 2018 to August 13, 2018,” possibly exposing medical details and personally identifiable information for approximately 9,160 patients.  The hacked email accounts include sensitive patient information such as patients’ names, addresses, dates of birth, health insurance information, physicians’ names, Social Security numbers, driver’s license numbers, and limited clinical information.

Cybercriminal use personal information with the primary incentive of using that private data to commit identity theft and financial fraud.  Identity theft wreaks havoc on consumers’ finances, credit history, and reputation and can take time, money, and patience to resolve.  Identity thieves use stolen personal information for a variety of crimes, including credit card fraud, phone or utilities fraud, banking or finance fraud, government fraud, and medical identity theft.  Moreover, a person whose personal information has been compromised may not see the full extent of identity theft or fraud for years.

Disclosure of personal information and medical information is unlawful, and the attorneys at Finkelstein, Blankinship, Frei-Pearson & Garber, LLP have successfully brought lawsuits on behalf of victims of such disclosures.  If you visited Goshen Health, then your information may have been stolen.  Please contact FBFG to explore your rights.