AIHS reports data breach involving information related to employees, patients and vendors

• The incident occurred after an ex-employee forwarded certain AIHS emails to her personal email account.
• The data breach occurred between February 26, 2019, and March 6, 2019.

American India Health & Services Inc. (AIHS) is notifying patients, employees, and vendors of a data breach that occurred between February 26, 2019, and March 6, 2019. The incident occurred after an ex-employee forwarded certain AIHS emails to her personal email account.

What happened?

On March 7, 2019, AIHS discovered that a former AIHS employee had forwarded some AIHS emails to her personal email account. Investigations found that the emails were forwarded when the individual was employed by AIHS.

Since the forwarded emails and the content within clashes with AIHS policies and procedures, the health firm decided to launch an investigation with the help of a third-party computer forensics expert.

What information was involved?

The compromised emails contained personal information of some patients such as names, billing details, health insurance data, provider’s location, dates of service and amounts paid to AIHS for services.

It is not known if any patient data has been misused.

What actions were taken?

AIHS encourages potentially impacted individuals to review their accounts and credit reports for suspicious activity. In addition, it is also providing 12 months of identity theft protection services to affected victims.

AIHS is also reviewing its existing policies and procedures. It has notified individuals, law enforcement agencies and state regulators about the incident.