KTVZ reports:
The Oregon Department of Human Services announced Friday that it uncovered a “phishing” incident on March 6 that affected one staff member’s e-mail.
[…]
The security and confidentiality of private health information is critical to the Department of Human Services. While the department cannot confirm that any clients’ personal information was acquired from its email system or used inappropriately, it is notifying the public because information was accessible to an unauthorized person or persons.