• Text Size: Decrease Text SizeIncrease Text Size
  • Printer Friendly Version

Memorial Notifies Additional Patients about Email Phishing Incident

Posted Date: June 14, 2019

GULFPORT, MS —Memorial Hospital at Gulfport (“MHG”) announced that it is sending additional letters today to patients about its December 2018 email phishing incident.

On December 17, 2018, MHG learned that an unauthorized third party gained access to an employee’s email account on December 6, 2018. MHG immediately took steps to secure the account and began an investigation, which determined that patient information was contained in the email account and may have included patients’ names, dates of birth, health insurance information, Social Security numbers and/or information about medical care received at MHG. A limited number of financial account and payment card numbers were also included in the email account.

MHG initially notified patients and the media of this incident on February 15, 2019, and continued its investigation. Beginning on June 14, MHG is sending additional letters to patients who have been identified during the course of its investigation. MHG's investigation is ongoing, and more patients may be notified in the coming weeks.

Even though MHG has no indication that patient information has been misused, MHG is offering complimentary credit monitoring and identity protection services to those patients whose Social Security numbers were included in the email account. MHG recommends that affected patients carefully review statements they receive from their banking institutions, payment card issuers, health care providers and health insurers. If they see charges or services not incurred or received, they should contact the issuing bank, provider or insurer, as applicable, immediately.

If patients have any questions about this incident, they may call 1-855-579-3699, Monday through Friday, 8 a.m. to 5:30 p.m. Central Time.

MHG takes the privacy and confidentiality of its patients' information very seriously and is enhancing its information security safeguards to help prevent an incident such as this from occurring in the future.