Jump To Top

groundrushairsports

You are here:
Home / Health News / St. Luke's Health reports data beach

St. Luke's Health reports data beach

St. Luke’s Health learned that a data breach affecting consultant Adelanto Healthcare Ventures had compromised protected health information (PHI).

The data breach affecting the Texas-based system of nine hospitals and a number of clinics, labs and medical practices from St. Augustine to Houston is unrelated to the massive ransomware attack on its parent company, CommonSpirit Health. 

Unaware for nearly a year

Initially, the third-party consultant’s investigation determined that St. Luke’s data was not affected, according to an October 28 announcement.

However, further investigation revealed that email accounts for two of its employees, hacked into on November 5, 2021, did contain St. Luke’s patient information – including personally identifiable information, medical record numbers, treatment and diagnoses codes and more. Adelanto Healthcare Ventures updated the health system on the discovery on September 1.

While the healthcare data breach was reported on October 30, according to the U.S. Department of Health and Human Services Office for Civil Rights (OCR) list of cases under investigation for breach of unsecured PHI, the local community began to experience the effects weeks before.

KHOU Houston local news reported on October 5 that some patient appointments were being rescheduled. The outlet was also told by one nurse, who wished to remain anonymous, that some of St. Luke’s facilities were fully paper charting. 

To prevent further data exposure, St. Luke’s said in its breach announcement that it has taken some systems offline until the incident is resolved. 

The health system also said it is notifying affected patients – 16,906 individuals, according to OCR – and offering no-cost identity monitoring. 

Hacks by the numbers

Cyberattacks are happening almost every day, which has led to the federal government mandating Zero Trust architecture across agencies.

Some healthcare cyber attacks are historically the work of criminal gangs, while cyberwarfare is a concern of late across critical sectors.

Since the start of the year in the United States, there were 194 cases of cyber hacking/IT incidents breaching email accounts reported to OCR. 

Hacks targeting electronic medical records total 41, while there are 483 cases under investigation targeting network servers. 

Overall, OCR lists 911 cases of PHI data breaches under investigation so far this year.

Andrea Fox is senior editor of Healthcare IT News.
Email: [email protected]
Healthcare IT News is a HIMSS publication.

Source: Read Full Article

Related posts:
  1. Now you can send PICTURES of your genitals to an online STI checker
  2. Battle Ropes and Burpees Unite in This Chest-Focused Finisher
  3. Evaluating peers food choices may improve healthy eating habits among young adolescents
  4. Team develops new process for evaluating impacts of gene edits that alter rather than knock out DNA code
  • Posted on November 9, 2022
RELATED NEWS
Inside the Pentagon’s painfully slow effort to clean up decades of PFAS contamination
Stem cell heart tissue model paves the way for better understanding of tachycardia
Antimicrobial resistance leads to more deaths and illnesses in the WHO African region than anywhere else: Study
Scientists uncover secrets of brain development: Extensive neural migration continues after birth