Florida Medicaid program cleaning up after data breach

Register now

The Agency for Healthcare Administration, which administers the Florida Medicaid program, is offering one year of identity protection services from Experian for as many as 30,000 affected individuals following a data breach.

On Nov. 15, 2017, an employee was victimized by a phishing email attack, which poses as legitimate email coming from a trusted source when the email actually came from a hacker transmitting a virus.

Also See: 7 ways cyberattacks are becoming more dangerous

The agency learned of the attack on November 20 and determined no other systems or email accounts were compromised.

A review was launched and continues with preliminary findings sent to the agency on January 2. Compromised protected health information could include names, Medicaid identification numbers, dates of birth, addresses, diagnoses, medical conditions or Social Security numbers.

The agency believes only six percent of the affected individuals could be confirmed as having their Medicaid identification or Social Security numbers potentially accessed, but the protective services are being offered to all affected so they may take steps to protect themselves, officials say.

Now, the Agency for Healthcare Administration has initiated new and ongoing security training for all employees and is exploring additional options to protect against future breaches.

Agency personnel did not respond to a request for additional information.

For reprint and licensing requests for this article, click here.