INDIANAPOLIS — Indiana University Health issued a statement Tuesday saying that it detected "unusual activity" with a user's email account, resulting in some sensitive information being compromised.
On Oct. 18, 2024, officials said an IU Health team member's account may have been compromised so, on that same day, IU Health started an investigation and took steps to protect the user's accounts and IU Health's systems.
Ultimately, the investigation revealed that an unauthorized recipient gained access to the team member’s email account between Oct. 4-18, 2024.
IU Health said the compromised information varied from person-to-person, but may have included address, age, medical record number, diagnosis, or other limited treatment information. However, health officials said they aren't aware of any financial or Social Security numbers compromised by this.
"While there was no financial information or Social Security numbers impacted by this incident, as a precaution, we encourage affected individuals to remain vigilant and verify that anyone who is reaching out about personal and/or health information is a legitimate representative of the organization they say they are associated with," a spokesperson for IU Health said in a news release.
IU Health started notifying people of this security incident on Tuesday, Dec. 17.
"We are committed to protecting personal information, and IU Health continues to implement security measures to prevent these activities from occurring in the future," the spokesperson said.
If you have any questions, you are encouraged to call 1-844-920-8857. The call center is open Monday-Friday from 9 a.m. to 9 p.m.
