UC San Diego Health confirmed Tuesday it had fallen prey to a data breach involving “unauthorized access to some employee email accounts.” Here’s what we know about what the health group is calling a “security matter.”
UC San Diego Health posted this notice Tuesday outlining details of the data breach.
The health group said some employee email accounts had been impacted in the security incident but added: “At no time was continuity of care for our patients affected by the event.”
“When UC San Diego Health discovered the issue, we terminated the unauthorized access to these accounts and enhanced our security controls,” the notice released by UC San Diego Health read. “UC San Diego Health reported the event to the FBI and is working with external cybersecurity experts to investigate the event and determine what happened, what data was impacted, and to whom the data belonged.”
UC San Diego Health said the investigation is ongoing as to which data was impacted but added:
“At this time, we are aware that these email accounts contained personal information associated with a subset of our patient, student, and employee community.”
The health group said the review was expected to be completed in September.
Meanwhile, UC San Diego Health said there is no evidence that other UC San Diego Health systems were impacted or that any information obtained in the breach has been misused.
The news comes two months after Scripps Health announced “ransomware attacks” targeted its technology systems in May. The health care group later announced over 147,000 patients, students and physicians might have had their personal and financial information compromised in the cyberattack.
Scripps Health confirmed Sunday their technology servers were hacked overnight.