Partners HealthCare Notifies 2,600 Patients of Malware Attack | Healthcare Informatics Magazine | Health IT | Information Technology Skip to content Skip to navigation

Partners HealthCare Notifies 2,600 Patients of Malware Attack

February 6, 2018
by Rajiv Leventhal
| Reprints

Partners HealthCare has notified approximately 2,600 patients whose private information may have been breached when Partners’ computer network was impacted by a malware attack last year.

The Boston-based health system said that suspicious activity was discovered last May by Partners’ monitoring systems. Partners quickly was able to block some of this malware and hired third-party forensic consultants. Based on Partners’ investigation, the malware was not specifically targeted to impact the organization’s information, and Partners confirmed there was no access to its electronic medical record (EMR) system, according to officials.

Based on Partners’ investigation, the malware may have resulted in unauthorized access to certain data resulting from user activity on affected computers from May 8, 2017 to May 17, 2017. As impacted computers were identified, Partners implemented containment measures to mitigate further impact, officials said.  

As part of its review, Partners became aware in July of data that appeared to possibly involve personal and health information. “The impacted data was not in any specific format, and it was mixed in together with computer code, dates, numbers and other data, making it very difficult to read or decipher,” according to the organization’s statement.

An analysis in December then revealed that the information involved may have included some health information, including first and last name, date(s) of service, and/or certain limited clinical information such as procedure type, diagnosis, and/or medication. For some patients, Social Security Numbers and financial account data may have been involved. Potentially affected patients have been sent personal letters explaining the type of information involved.

At this time, Partners said it is not aware of any misuse of patients’ health or personal information. The health system also said it has taken several measures to prevent similar incidents from happening again, including enhancing its security program, controls and procedures and continuing to actively monitor systems for unusual activity.

2018 Boston Health IT Summit

Renowned leaders in U.S. and North American healthcare gather throughout the year to present important information and share insights at the Healthcare Informatics Health IT Summits.

August 7 - 8, 2018 | Boston



Survey: Infrastructure, Interoperability Key Barriers to Global HIT Development

A new survey report from Black Book Research on global healthcare IT adoption and records systems connectivity finds nations in various phases of regional electronic health record (EHR) adoption. The survey results also reveal rapidly advancing opportunities for U.S.-based and local technology vendors.

Penn Medicine Opens Up Telehealth Hub

Philadelphia-based Penn Medicine has opened its Center for Connected Care to centralize the health system’s telemedicine activities.

Roche to Pay $1.9B for Flatiron Health

Switzerland-based pharmaceutical company Roche has agreed to pay $1.9 billion to buy New York-based Flatiron Health Inc., which has both an oncology EHR and data analytics platform.

Financial Exec Survey: Interoperability Key Obstacle to Value-Based Payment Models

Momentum continues to grow for value-based care as nearly three-quarters of healthcare executives report their organizations have achieved positive financial results from value-based payment programs, to date, according to a new study from the Healthcare Financial Management Association (HFMA).

Cerner, Children's National to Help UAE Pediatric Center with Health IT

Al Jalila Children's Specialty Hospital, the only pediatric hospital in the United Arab Emirates, has entered into an agreement with Washington, D.C.-based Children's National Health System to form a health IT strategic partnership.

Telemedicine Association Names New CEO

The American Telemedicine Association (ATA) has named Ann Mond Johnson its new CEO, replacing Jon Linkous who stepped down suddenly last August after 24 years as the organization’s CEO.