BALTIMORE (AP) — Maryland’s largest health insurer says a phishing attack may have exposed the personal information of nearly 7,000 members.

News outlets report CareFirst BlueCross BlueShield said Friday that an employee’s email account was compromised March 12, and could have allowed access to the named, identification numbers and birthdates of up to 6,800 members. The insurer says that while social security numbers could have been taken in eight cases, no medical or financial information was compromised.

READ MORE: Harford County Restaurants Can Keep Delivering Cocktails, Liquor Board Says

CareFirst says there’s no evidence the stolen information has been used, but it’s offering free credit monitoring and identity theft protection to those affected for two years.

READ MORE: What A Day: Katie Ledecky Experiences Defeat, Victory, Perspective In Tokyo

Follow @CBSBaltimore on Twitter and like WJZ-TV | CBS Baltimore on Facebook

MORE NEWS: Baltimore Ravens Fans NFL's Second-Heaviest Drinkers, Survey Finds

(© Copyright 2018 The Associated Press. All Rights Reserved. This material may not be published, broadcast, rewritten or redistributed.)