A phishing email sent by a hacker may be responsible for a data breach involving 2,500 clients of Kentucky's Cabinet for Health and Family Services. The state government entity announced this week that it sent letters to individuals whose information had been held by its Department for Community Based Services.
An employee with DCBS responded to the phishing email--sent in July--causing the data to be compromised. The data had been included in the National Youth Transition Database, which monitors those who have exited or are in the process of leaving the foster care system. Names, addresses and other identification codes were accessible, but health information on diagnosis and Social Security numbers were not, Healthcare IT News reports. Article