Kentucky Health Agency Reports Data Breach | Healthcare Informatics Magazine | Health IT | Information Technology Skip to content Skip to navigation

Kentucky Health Agency Reports Data Breach

September 20, 2012
by Gabriel Perna
| Reprints

The Kentucky Cabinet for Health and Family Services, home to most of the state’s human services and healthcare programs, has reported a data breach that occurred when an employee with the Cabinet’s Department for Community Based Services (DCBS) responded to a “phishing” e-mail sent by a hacker. According to the agency, unauthorized activity on the account was identified within a half hour and the account was immediately disabled. The agency has informed 2,500 clients that the breach may have resulted in the unintentional release of their personal information.  

The agency says there is no evidence that the hacker accessed the confidential contents of the e-mail account, but acknowledges they did have access to the email account for a brief period. The information that may have been accessed was a database with the names, birthdates, and most recent address of those who had been freshly aged out of the foster care system.

“In all likelihood, the hacker intended to access the state government e-mail server to send spam emails and did not access or view client information,” Rodney Murphy, executive director of the Office of Administrative and Technology Services, said in a statement. “However, out of an abundance of caution, we are notifying clients who might have been affected by this incident. The Cabinet and DCBS take our role of safeguarding the personal information of those we serve very seriously and have increased awareness activities for staff to help protect against future issues of this kind.”

Topics

News

Community Data Sharing: Eight Recommendations From San Diego

A learning guide focuses on San Diego’s experience in building a community health information exchange and the realities of embarking on a broad community collaboration to achieve better data sharing.

HealthlinkNY’s Galanis to Step Down as CEO

Christina Galanis, who has served as president and CEO of HealthlinkNY for the past 13 years, will leave her position at the end of the year.

Email-Related Cyber Attacks a Top Concern for Providers

U.S. healthcare providers overwhelmingly rank email as the top source of a potential data breach, according to new research from email and data security company Mimecast and conducted by HIMSS Analytics.

Former Health IT Head in San Diego County Charged with Defrauding Provider out of $800K

The ex-health IT director at North County Health Services, a San Diego County-based healthcare service provider, has been charged with spearheading fraudulent operations that cost the organization $800,000.

Allscripts Touts 1 Billion API Shares in 2017

Officials from Chicago-based health IT vendor Allscripts have attested that the company has reached a new milestone— one billion application programming interface (API) data exchange transactions in 2017.

Dignity Health, CHI Merging to Form New Catholic Health System

Catholic Health Initiatives (CHI), based in Englewood, Colorado, and San Francisco-based Dignity Health officially announced they are merging and have signed a definitive agreement to combine ministries and create a new, nonprofit Catholic health system.