Bi-Bett Corporation reports Data Breach through hacked Email Account

Bi-Bett Corporation reported a data breach in which an unauthorized party had gained access to an employee's email account, which contained sensitive patient information.

The compromised data includes:

• First and last names
• Addresses
• Social Security Numbers
• Driver's license numbers
• Medicaid numbers
• Medical reference numbers

No details were disclosed about the number of affected individuals.

The breach was detected on February 17, 2023, when suspicious activity was observed in the employee's email account. In response, Bi-Bett secured the account and launched an investigation with the assistance of cybersecurity specialists.

After it was confirmed that the unauthorized party had accessed the employee's email account and gained access to confidential patient information, Bi-Bett initiated the distribution of data breach notification letters to all individuals affected by the incident, providing a list of the compromised information.

BiBett and other behavioral health and addiction treatment centers are interesting targets for hackers due to the wealth of confidential information they store about their patients, increasing the risk of extortion, identity theft and other fraud for affected individuals.