Iowa Health Department Reports Data Breach Affecting 6,717 Medicaid Members
Post Summary
The Iowa Department of Health and Human Services (HHS) has disclosed that a data breach on February 16 led to Medicaid information for 6,717 individuals being accidentally posted to a state website. The file containing the information was promptly removed, according to officials.
While the file reportedly did not include personal identifiers such as names, addresses, contact details, or health information, it did contain Medicaid subscriber IDs, the names of waiver programs, and the dates eligibility assessments were scheduled or conducted. HHS emphasized that the exposed data did not include any sensitive personal information.
"It is possible for a bad actor to commit medical identity theft with a Medicaid ID, according to the Federal Trade Commission." The department has notified all impacted individuals and provided information on requesting a free credit report or initiating a credit freeze in case of suspected identity theft.
To prevent similar incidents in the future, HHS stated that staff members have received additional training. The department remains committed to safeguarding sensitive information and improving its data management processes.
