UAB Medical is the victim of a phishing attack that targeted the medical center’s payroll department. This allowed attackers to gain access to numerous employee emails that contained the health information for 19,557 patients.

On August 7th, 2019, attackers began sending emails to employees that pretended to be an executive asking them to fill out a survey. As part of this survey, it was requested that the employees provide their username and password, which some submitted.

This allowed the attackers to gain access to UAB Medical’s payroll system where they were trying to redirect employee payments to bank accounts under the attacker’s control.