Boston-based Partners HealthCare is notifying about 3,300 patients about a data breach.
The system said it has been conducting an investigation since it learned in November that a group of its staffers received phishing e-mails and provided information in response. Such e-mails trick their targets into handing over passwords or clicking on links that install malicious programs. Partners says some correspondence contained patient information including names, addresses, dates of birth, phone numbers and Social Security numbers and clinical information such as diagnoses, treatments received and insurance information. The breach involved patients at Massachusetts General Hospital, Brigham and Women’s Hospital and several other facilities.