McLean Hospital, a member of Mass General Brigham (MGB), has reported a significant data breach involving an email archive that affected individuals who received MRI scans either as research participants or through clinical services between June 15, 2020, and February 9, 2024. The incident was discovered on February 8, 2024, and a thorough investigation was concluded by May 3, 2024.
The compromised data potentially includes patient names, addresses, medical record numbers, dates of birth, Social Security numbers, driver’s license numbers, health insurance policy numbers, email addresses, and phone numbers. Clinical information such as service dates, procedure types, diagnoses, medications, clinical locations, and research participation details might also have been exposed.
In response to this breach, McLean Hospital and MGB have implemented enhanced security measures to prevent future incidents. Additionally, they are offering affected individuals 24 months of free credit monitoring and identity theft protection services through Experian’s IdentityWorks℠.
Affected individuals have been notified and provided with instructions on how to activate these services, along with a reference guide containing steps to protect personal information, including monitoring account statements and updating personal information with healthcare providers.
McLean Hospital remains committed to protecting the information entrusted to them and sincerely regrets the incident. They are available for further inquiries through their Privacy Office, ensuring that all affected individuals have the necessary support and resources to address any concerns arising from this breach.
