From EHR shutdowns to employees breaching patient records, here are seven health systems that have been affected by a cybersecurity incident since Dec. 1:
- An employee at Atlanta-based Emory Healthcare inappropriately accessed 1,600 patient records from December 2020 to December 2021.
- Banning, Calif.-based San Gorgonio Memorial Hospital said patient data was accessed during a recent cybersecurity incident at the facility. The hospital identified unusual activity on its computer network Nov. 10, subsequently isolating and shutting down select IT systems. Its investigation determined that an unauthorized party got into the network between Oct. 29 and Nov. 10, accessing documents that contained patient information.
- New York City-based One Brooklyn Health's hospitals are still working to fully restore some of its IT and EHR systems after a November cybersecurity incident caused three of its hospitals to shut them down.
- An employee email account from Orlando (Fla.) Health was accessed by an unauthorized user, which may have compromised the information of 3,662 patients.
- Dalhart, Texas-based Dallam Hartley Counties Hospital District said a hacker stole the data of nearly 70,000 of its patients.
- Chicago-based CommonSpirit said during its Oct. 2 ransomware attack, an unauthorized third party gained access to files containing patients' personal information from one of its affiliates, Seattle-based Virginia Mason Franciscan Health.
- The Department of Veterans Affairs admitted it failed to protect the COVID-19 vaccination status data for about 500,000 of its employees after a spreadsheet containing the information was improperly shared in October 2021.