LANSING, Mich. (Michigan News Source) – A cybersecurity breach at HealthEC, LLC, a population health management platform that provides services to Corewell Health’s southeastern Michigan properties, has reportedly affected more than one million Michigan residents.
HealthEC is a Corewell Health vendor and mailed notice letters to impacted patients.
MORE NEWS: Filling the Gap: $350K in Scholarships Aim to Boost Dental Workforce
Michigan Attorney General Dana Nessel said the impacted data can include:
- Name
- Address
- Birth date
- Social Security number
- Medical record number
- Medical information
- Diagnosis
- Diagnosis code
- Mental/physical condition,
- Prescription information
- Provider’s name
- Health insurance information
- Medicaid and/or Medicare identification number
- Billing and claims information
Last month, Corewell Health announced a data breach at Welltok, Inc., a software company contracted by Corewell to provide communications services which also impacted one million Michigan patients. Earlier this year, Attorney General Nessel notified Michigan residents about a ransomware attack affecting 2.5 million McLaren Health Care patients. Similarly, the University of Michigan faced a cyberattack in late August, leading to the compromise of personal information.
HealthEC is offering 12 months of credit monitoring and identity protection services through TransUnion. Information on how to enroll will be mailed directly to potentially impacted patients. For additional information, consumers can call 1-833-466-9216.
In addition, the breach impacted a smaller number of individuals through Beaumont ACO. Beaumont ACO has a separate contract with HealthEC.
For more information click here.
