Beaumont Health (“Beaumont”) is committed to maintaining the privacy and security of information. On July 28, 2020, Beaumont notified individuals of a data security incident involving access to certain employee email accounts by an unauthorized
third-party. This data incident impacted approximately 6,000 patients, which is a little less than .3% of the 2.3 million patients Beaumont serves.
Upon learning of this issue, Beaumont promptly disabled the accessed email accounts and required mandatory password resets to prevent further misuse. Beaumont immediately launched a prompt and thorough investigation, working closely with external cybersecurity
professionals. After an extensive forensic investigation and comprehensive manual document review, we discovered on June 5, 2020 that one or more of the email accounts accessed between January 3, 2020 and January 29, 2020 contained identifiable personal
and/or protected health information. Our investigation was unable to determine definitively if any information was viewed or acquired by the unauthorized third party, and Beaumont has no knowledge of any misuse of data by any unauthorized individuals.
Beaumont’s electronic medical record system was not impacted by this incident and remains secure. However, out of an abundance of caution, we are issuing notices to anyone whose information may have been contained in the accessed accounts.
The accessed email accounts contained the personal and protected health information of certain patients, including name, date of birth, diagnosis, diagnosis code, procedure, treatment location, treatment type, prescription information, Beaumont patient
account number, and Beaumont medical record number. This incident does not affect all patients of Beaumont and not all of these identifiers were included for each notified individual.
Beaumont was the victim of a separate phishing attack in 2019 and notified affected individuals of that incident in April 2020. Since that date, Beaumont has taken significant measures to improve internal procedures to identify and remediate future threats
in order to minimize the risk of a similar incident in the future, including improving its multi-factor authentication software, conducting a risk analysis, and providing additional training and education to Beaumont employees on identification and
handling of malicious emails. Notified patients should monitor insurance statements for any transactions related to care or services that have not actually been received.
For further questions or additional information regarding this incident, or to determine if you may be impacted by this incident, a dedicated toll-free response line has been set up at 844-925-2476. The response line is
available Monday through Friday, 9:00 a.m. to 6:30 p.m. Eastern Time.