UC San Diego Health on Tuesday announced a data breach involving unauthorized access to employee email accounts.
In a post on its website, UC San Diego Health said the breach happened between Dec. 2, 2020, and April 8, 2021. Patient information — including name, social security number, date of birth medical records and claims information — may have been compromised.
After it discovered the breach, the hospital system terminated access to these accounts and “enhanced” its security controls, UC San Diego Health said.
UC San Diego said no other systems were impacted nor were any evidence data was misused. It has since taken corrective measures and the hospital said it will notify those affected by Sept. 30, 2021.
The hospital has already notified the FBI and is working with cybersecurity experts to find out how the breach happened.
