Personal health information could have been sent to a number of suspicious IP addresses, after eHealth was the victim of a ransomware attack in January 5th.
When the attack was discovered last month, eHealth reported it was caught quickly.
Some of the administrative systems had been encrypted, meaning they were locked down and requests for ransom were issued.
At the time, eHealth didn’t think any patient information had been included.
Today (Friday), it was discovered that files had been sent to suspicious IP addresses that were encrypted and password protected by the attacker, making it difficult to determine the content.
eHealth has hired a specialized security firm and should it be determined personal health information was compromised, the public will be advised.
Officials with the Ministry of Health and Saskatchewan’s Information Privacy Commissioner have been informed.