Baylor Scott & White Texas Spine & Joint Hospital report data breach
Learn More
Baylor Scott & White Texas Spine & Joint Hospital in Tyler, Texas is reporting a data security breach that potentially exposed patient information.
The Tyler-based hospital specializes in orthopedic and spine surgery, non-surgical pain management procedures, diagnostic imaging, and musculoskeletal health and rehabilitation.
On January 15, 2025 the hospital discovered that an unauthorized third party had gained access to a Microsoft Office 365-hosted business email account. The unauthorized access occurred between January 10, 2025, and January 14, 2025. The compromised email account contained patient personal including:
- full name,
- date of birth,
- address
- Medical treatment information,
- dates of service,
- provider and facility names,
- procedure codes
- Billing and claims information
- account and/or claim status
- transaction and charge identification numbers,
- patient account identifiers
- payor information
The number of affected individuals has not been disclosed.
The hospital claims that Social Security numbers, driver's license numbers, credit and debit card information, bank account information, and account passwords were not involved in this incident. The hospital has emphasized that the affected email account is separate from the hospital's internal network and systems, which were not compromised in this incident.
The hospital is sending notification letters to affected individuals
