Lucent Health Solutions, LLC has disclosed a cybersecurity incident involving unauthorized access to an employee’s email account. The breach, which stemmed from a phishing email opened on October 2, 2023, may have exposed personal information, though the company states there is no evidence of data being downloaded or viewed.
According to Lucent Health, the phishing email came from a trusted broker, tricking a company manager into opening it. Within 90 minutes of detecting suspicious activity, Lucent Health’s IT team revoked access to the compromised email account. The company launched an immediate forensic investigation with the help of external cybersecurity experts. Findings indicate that while an unauthorized individual briefly accessed the account and conducted specific keyword searches, no data was exfiltrated or electronically transferred.
Lucent Health emphasized that it is taking proactive steps to strengthen security measures and prevent future incidents. “Out of an abundance of caution, we wanted to notify those potentially affected and assure them that we continue to take significant measures to protect their information,” the company stated.
Individuals with concerns about their personal data are encouraged to remain vigilant and monitor for any unusual activity. Lucent Health has not specified how many people may have been affected but has committed to keeping stakeholders informed as they enhance their cybersecurity protocols.
What Information Was Involved?