Hackers steal data of 4.5M patients in second largest HIPAA breach

Tennessee-based Community Health Systems—which operates 206 hospitals across 29 states—discovered a breach recently and believes the cyber-attack occurred in April and June. CHS officials said they believe the hacking group responsible for the breach is located in China and “used highly sophisticated malware and technology.” Hackers were able to circumvent CHS’s security measures and copy and transfer data outside the organization.

The hackers accessed the following data from affected patients:

  • Patient names
  • Addresses
  • Dates of birth
  • Telephone numbers
  • Social Security numbers

Tips on how to avoid this scenario:

  1. Act quickly! If you suspect something is not right, report it to your manager and file an EOR.
  2. Make sure you use a strong password.
  3. Do not open emails from unknown senders.