Hospital Hackers Steal 4.5M Patient Records

The information obtained includes Community Health System’s patient names, Social Security numbers, physical addresses, birthdays and phone numbers.

Community Health Systems announced on Monday that cyber criminals hacked into its network and obtained data on approximately 4.5 million of its patients.

The information obtained includes patient names, Social Security numbers, physical addresses, birthdays and phone numbers, according to CNN. Patients who visited any of the system’s 206 hospitals in the past five years or were referred to them are affected.

Most of the hospitals involved are in Alabama, Florida, Mississippi, Oklahoma, Pennsylvania, Tennessee and Texas, however, Community Health Systems operates in 29 states.

The attacks are believed to be the work of a group in China and occurred in April and June, according to KRQE. Sophisticated malware was used to obtain the patient information, and it has been removed from Community Health’s network. The FBI is working with the company to investigate the case.

Community Health System is notifying individuals affected by the data breach and offering ID theft protection services.

Get the latest Hospital Security news sign up for our: Hospital Security Newsletter

If you appreciated this article and want to receive more valuable industry content like this, click here to sign up for our FREE digital newsletters!

Leading in Turbulent Times: Effective Campus Public Safety Leadership for the 21st Century

This new webcast will discuss how campus public safety leaders can effectively incorporate Clery Act, Title IX, customer service, “helicopter” parents, emergency notification, town-gown relationships, brand management, Greek Life, student recruitment, faculty, and more into their roles and develop the necessary skills to successfully lead their departments. Register today to attend this free webcast!

Get Our Newsletters
Campus Safety Conference promo