CHS Hacked, 4.5M Patient Records Compromised
The data affected was non-medical patient identification data related to Community Health Systems' physician practice operations and does not include patient credit card, medical, or clinical information, CHS says.
Community Health Systems Inc. said Monday that its computer network was "the target of an external criminal cyberattack" between April and June that may have compromised the personal data of 4.5 million patients.
"The Company and its forensic expert, Mandiant (a FireEye Company), believe the attacker was an "advanced persistent threat" group originating from China who used highly sophisticated malware and technology to attack the Company's systems," Franklin, TN-based CHS said in a Form 8-K filing Monday with the Securities and Exchange Commission.
"The Company has been informed by federal authorities and Mandiant that this intruder has typically sought valuable intellectual property, such as medical device and equipment development data."
"However, in this instance, the data transferred was non-medical patient identification data related to the Company's physician practice operations and affected approximately 4.5 million individuals who, in the last five years, were referred for or received services from physicians affiliated with the Company."
- EHR Systems 'Immature, Costly,' AMA Says
- Anthem Blue Cross, 7 CA Health Systems Create New Challenger, Business Model
- Interstate Medical Licensure Effort Advances
- Better HCAHPS Scores Protect Revenue
- Data Points to Boom in Private HIX
- How to Build a Health Plan from Scratch
- Few Winners Among MSSP Participants
- Technology Lights Up Health Innovation Forum
- CEO Exchange: Preparing for Population Health
- Insurers see cost hikes in Partners HealthCare (MA) mergers