The Facial Pain Center, an eight-office practice in Minnesota, recently suffered a data breach affecting more than 1,800 individuals.
The practice said that on Jan. 23, it became aware of unauthorized activity for a limited number of employee email accounts. After securing the email accounts, the practice partnered with third-party cybersecurity specialists to investigate the incident. That investigation determined there was unauthorized access to a limited number of email accounts between Jan. 11 and Jan. 23., during which an unauthorized actor may have viewed or accessed certain information stored within the email accounts and related files.
The information that may have been affected by the breach varies by individual but includes names, demographic information, medical information, health insurance information and dates of birth, according to a notice on the practice's website.
The practice submitted the incident to the U.S. Department of Health and Human Services Breach Portal Aug. 9.