Community Health Systems Reports Data Breach Affecting 4.5M Patients | Healthcare Informatics Magazine | Health IT | Information Technology Skip to content Skip to navigation

Community Health Systems Reports Data Breach Affecting 4.5M Patients

August 18, 2014
by Rajiv Leventhal
| Reprints

The Franklin, Tenn.-based Community Health Systems, Inc. has said that the personal data of approximately 4.5 million patients was stolen by hackers from its computer network in April and June.

According to a story in Reuters, the company said the data, considered protected under the Health Insurance Portability and Accountability Act (HIPAA), included patient names, addresses, birth dates, telephone numbers and Social Security numbers. It did not include patient credit card or medical information, however. The breach was reported by the organization in a Securities and Exchange Commission (SEC) filing.

It further said the security breach had affected about 4.5 million people who were referred for or received services from doctors affiliated with the hospital group in the last five years. The company said it is notifying affected patients and regulatory agencies as required by law.

The rural hospital operator and cybersecurity firm Mandiant believe the attacker was an "Advanced Persistent Threat" group originating from China, according to a Wall Street Journal report. The attacker, who used highly sophisticated malware and technology to attack the company's systems, was able to bypass Community Health Systems' security measures and to successfully copy and transfer certain data outside the company, it said.

Community Health Systems is one of the nation’s largest operators of general acute care hospitals. It includes 206 affiliated hospitals in 29 states.

Get the latest information on Health IT and attend other valuable sessions at this two-day Summit providing healthcare leaders with educational content, insightful debate and dialogue on the future of healthcare and technology.

Learn More

Topics

News

MGMA: Physician Compensation Data Illustrates Nationwide PCP Shortage

Primary care physicians’ compensation rose by more than 10 percent over the past five years, representing an increase which is nearly double that of specialty physicians’ compensation over the same period, according to the Medical Group Management Association (MGMA).

Circulation, Buoy Health Collaborate on Integrated Platform for Patient Transportation

Boston-based startup Circulation Health, a ride-ordering exchange that coordinates medical transportation logistics using Lyft and other transportation partners, is partnering with Buoy Health, also based in Boston, to integrate their platforms to provide patients with an end-to-end healthcare experience.

HITRUST Provides NIST Cybersecurity Framework Certification

The Health Information Trust Alliance (HITRUST), security and privacy standards development and accreditation organization, announced this week a certification program for the National Institute of Standards and Technology's (NIST) Cybersecurity Framework (Framework).

Report: Interoperability in NHS England Faces Similar Barriers as U.S. Healthcare

Electronic patient record interoperability in NHS England is benefiting patient care, but interoperability efforts are facing barriers, including limited data sharing and cumbersome processes falling outside of the clinician workflow, according to a KLAS Research report.

Geisinger National Precision Health Hires Illumina Exec to Lead Business Development

Integrated health system Geisinger has hired a high-profile genetic counselor to head up business development for Geisinger National Precision Health, which was created to extend the Geisinger model on the national scene.

$30M VC Fund Launched to Spur Innovation in Cardiovascular Care

The American Heart Association, together with Philips and UPMC, has announced the launch of Cardeation Capital, a $30 million collaborative venture capital fund designed to spur healthcare innovation in heart disease and stroke care.