{"id":10929,"date":"2020-08-03T20:52:43","date_gmt":"2020-08-04T01:52:43","guid":{"rendered":"https:\/\/www.billingparadise.com\/blog\/?p=10929"},"modified":"2023-03-16T01:32:38","modified_gmt":"2023-03-16T06:32:38","slug":"data-breach-at-rcm-vendor-mercy-health-alerts-patients","status":"publish","type":"post","link":"https:\/\/www.billingparadise.com\/blog\/data-breach-at-rcm-vendor-mercy-health-alerts-patients\/","title":{"rendered":"Data breach at RCM vendor, Mercy Health alerts patients"},"content":{"rendered":"<section  class=\"section no\"><div class=\"row\"><div class=\"wpb_column col-md-12 have-padding\"><div class=\"text-block \" ><div class=\"simple-text \"><p><span style=\"font-weight: 400\">Patients received an alert from Mercy Health Lorain (Ohio) Hospital, notifying them that their protected health information potentially may have been exposed in a data breach that happened at a revenue cycle management vendor. <\/span><\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"size-full wp-image-10931 aligncenter\" src=\"https:\/\/www.billingparadise.com\/blog\/wp-content\/uploads\/2020\/08\/Screenshot-2020-08-04-at-7.20.24-AM.png\" alt=\"\" width=\"222\" height=\"40\" \/><\/p>\n<\/div><\/div><\/div><\/div><\/section><section  class=\"section no\"><div class=\"row\"><div class=\"wpb_column col-md-12 have-padding\"><div class=\"text-block \" ><div class=\"simple-text \"><p><span style=\"font-weight: 400\">According to the alert, RCM Enterprise Services reportedly discovered that it had mailed medical invoices to patients that had incorrect information. The usual practice followed by the vendor includes sending invoices which have names, street addresses, cities, states and zip codes, but inadvertently they sent out invoices which listed names, street addresses, and Social Security numbers. <\/span><\/p>\n<\/div><\/div><\/div><\/div><\/section><section  class=\"section no\"><div class=\"row\"><div class=\"wpb_column col-md-12 have-padding\"><div class=\"text-block \" ><div class=\"simple-text \"><p><span style=\"font-weight: 400\">The breach happened between Aug. 14 and Oct. 16, RCM Enterprise Services reportedly mailed invoices with Social Security numbers to the patients. The company\u00a0 since then has begun alerting hospitals and health systems whose patients may have been affected.\u00a0<\/span><\/p>\n<\/div><\/div><\/div><\/div><\/section><section  class=\"section no\"><div class=\"row\"><div class=\"wpb_column col-md-12 have-padding\"><div class=\"text-block \" ><div class=\"simple-text \"><p><span style=\"font-weight: 400\">No evidence has so far been found that patients&#8217; Social Security numbers may have been misused. Credit and identity monitoring has been offered by RCM Enterprise Services to the patients, who have also been recommended to review their financial statements.<\/span><\/p>\n<\/div><\/div><\/div><\/div><\/section><section  class=\"section no\"><div class=\"row\"><div class=\"wpb_column col-md-12 have-padding\"><\/div><\/div><\/section>\n","protected":false},"excerpt":{"rendered":"Patients received an alert from Mercy Health Lorain (Ohio) Hospital, notifying them that their protected health information potentially may have been exposed in a data breach that happened at a revenue cycle management vendor. According to the alert, RCM Enterprise Services reportedly discovered that it had mailed medical invoices to patients that had incorrect information. [...]","protected":false},"author":2,"featured_media":10930,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_monsterinsights_skip_tracking":false,"_monsterinsights_sitenote_active":false,"_monsterinsights_sitenote_note":"","_monsterinsights_sitenote_category":0,"footnotes":""},"categories":[721,841,717],"tags":[],"class_list":["post-10929","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-billing-collections","category-medical-billing","category-most-popular"],"_links":{"self":[{"href":"https:\/\/www.billingparadise.com\/blog\/wp-json\/wp\/v2\/posts\/10929","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.billingparadise.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.billingparadise.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.billingparadise.com\/blog\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/www.billingparadise.com\/blog\/wp-json\/wp\/v2\/comments?post=10929"}],"version-history":[{"count":1,"href":"https:\/\/www.billingparadise.com\/blog\/wp-json\/wp\/v2\/posts\/10929\/revisions"}],"predecessor-version":[{"id":442185,"href":"https:\/\/www.billingparadise.com\/blog\/wp-json\/wp\/v2\/posts\/10929\/revisions\/442185"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.billingparadise.com\/blog\/wp-json\/wp\/v2\/media\/10930"}],"wp:attachment":[{"href":"https:\/\/www.billingparadise.com\/blog\/wp-json\/wp\/v2\/media?parent=10929"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.billingparadise.com\/blog\/wp-json\/wp\/v2\/categories?post=10929"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.billingparadise.com\/blog\/wp-json\/wp\/v2\/tags?post=10929"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}