Inadvertent Email Attachment Causes Breach at U-Miss Medical Center

The University of Mississippi Medical Center will notify 2,281 medical center students after protected information on them was inadvertently sent to 190 other students.


The University of Mississippi Medical Center will notify 2,281 medical center students after protected information on them was inadvertently sent to 190 other students.

The 190 students were being informed via email of health facilities that accept their student health insurance plan. But the emails included an attachment with a spreadsheet that listed the name, date of birth, Social Security number, ethnic origin, address, insurance information, grade point average, credit hours earned, tuition and account balances of the 2,281 medical center students, according to a statement from the medical center.

The mistake was discovered and the medical center began retracting the emails 50 minutes after they were sent in late afternoon on August 21. A total of 115 students opened the email and an unknown number opened the attachment. “Upon discovery of the error, the Department of Information Systems was promptly notified and appropriate actions were taken to delete the email and attached file from all recipients’ accounts,” according to an email sent to the 2,281 affected students on August 23. “The individuals who opened the email and attachment have been advised about their responsibilities under UMMC’s information security policies.”

Affected students also will receive a hard-copy notification letter in coming days detailing options available to them, which will include an offer of paid identity theft protection services, according to a spokesperson.

More for you

Loading data for hdm_tax_topic #reducing-cost...