Huston Hospital Data Heist: Who's Behind It?

who is stealing data from huston hospital

Data breaches in hospitals have become increasingly common, with cybercriminals targeting healthcare companies that store sensitive patient information. In Houston, there have been several notable incidents of data theft, affecting millions of patients and raising concerns about the security of personal information. One of the most significant breaches involved HCA Healthcare, where approximately 11 million patients' data was compromised, including personal details and medical information. Other incidents include the OakBend Medical Center, where a cyberattack by the Daixin Team resulted in the leak of hundreds of thousands of records, and Gryphon Healthcare, where up to 400,000 people's information was potentially accessed by a malicious attacker. These data breaches have highlighted the vulnerability of healthcare organizations and the need for enhanced security measures to protect patient privacy.

Characteristics Values
Date of the breach July 2023
Hospitals affected 11 HCA Houston Healthcare hospitals, Woman's Hospital of Texas, Texas Orthopedic Hospital/Center
Number of patients affected 11 million
Type of breach Data breach, theft from an external storage location
Information stolen Personal information
Action taken HCA Healthcare is investigating the breach and has reported it to law enforcement
Past incidents St. Luke's Health hospitals in Houston, Fitzgibbon Hospital in Missouri
Past incident dates 2022, September 1, 2022
Past incident type Ransomware attack
Past incident perpetrators Daixin Team
Past incident number of records affected 500,000
Past incident information stolen Employee and patient data, test results, addresses, names, birth dates, email addresses

shunhospital

HCA Healthcare data breach impacts 11 million patients

In July 2023, HCA Healthcare, a leading healthcare provider operating 180 hospitals and 2,300 other facilities across 20 US states and the UK, announced a data breach that impacted approximately 11 million patients. The breach, which was first discovered on July 5, 2023, occurred when an unauthorized party released patient information on an online forum.

The stolen data included patient names, addresses, email addresses, telephone numbers, dates of birth, gender, and information on patient service dates, locations, and next appointment dates. Notably, the breach did not include any patient clinical, financial, or sensitive information such as passwords or social security numbers. HCA Healthcare believes that the list contains approximately 27 million rows of data, with 11 million rows pertaining to patient information.

The company has stated that the breach appears to be a theft from an external storage location exclusively used to automate the formatting of email messages to patients. HCA Healthcare has reported the incident to law enforcement and is investigating the matter. They have also encouraged patients to be vigilant against identity theft and fraud by monitoring their account statements and credit reports for any unauthorized or suspicious activity. Additionally, HCA Healthcare is offering complimentary credit monitoring and identity protection services to affected individuals for two years.

This breach is particularly concerning as it impacts a large number of patients and highlights the vulnerability of sensitive patient information to cyberattacks. It is a reminder that hospital leaders must prioritize cybersecurity to protect patient safety and data privacy. The incident also underscores the evolving nature of cyber threats and the need for a strong culture of cybersecurity within healthcare organizations.

Hospital Sink Water: Safe for Drinking?

You may want to see also

shunhospital

Houston Health Department COVID-19 test results portal hacked

The Houston Health Department suffered a data breach on its COVID-19 test results portal, with approximately 3,500 portal users potentially accessing the records of 10,000 patients. The breach was caused by a technical issue that linked several accounts together. The exposed data included names, addresses, birth dates, email addresses, test results, and testing dates. The department took swift action, deactivating the portal within 48 hours of discovering the incident and offering free identity protection services to those affected.

While this particular incident was not due to hacking, healthcare providers in Houston have frequently been targeted by cybercriminals. In July 2023, HCA Healthcare, which operates over 10 hospitals in the Houston area, reported a data breach impacting approximately 11 million patients. Personal information, such as names, addresses, contact details, and medical service details, was posted on an online forum. Notably, financial and sensitive information was not compromised.

In November 2022, a cyberattack on OakBend Medical Center's three hospital sites in the Houston area resulted in the leak of hundreds of thousands of employee and patient records. The ransomware group Daixin Team claimed responsibility, marking hospitals as their emerging target. This incident disrupted healthcare services, leading to a toddler being mistakenly overdosed due to inaccessible medical records.

Another notable data breach in Houston involved Gryphon Healthcare, a services provider to healthcare organizations. In October 2024, the company disclosed that a malicious attacker may have accessed the personal and medical data of up to 400,000 individuals. While Gryphon asserted that there was no evidence of data misuse, such incidents highlight the persistent threat of cyberattacks on healthcare data.

To safeguard patient information, healthcare organizations in Houston and beyond must prioritize robust cybersecurity measures. The increasing frequency and sophistication of cyberattacks demand continuous vigilance and adaptation to protect sensitive data from unauthorized access and misuse.

shunhospital

Cybercriminals target healthcare companies

Cybercriminals have increasingly targeted healthcare companies, and hospitals in Houston, Texas, have been no exception. In July 2023, HCA Healthcare, which operates over 10 hospitals in the Houston area, announced that approximately 11 million patients' personal information had been compromised and posted online. The data breach involved patients' names, addresses, contact information, dates of birth, genders, and details of their medical services and appointments. However, it did not include payment information, clinical data, or sensitive details such as passwords. HCA Healthcare reported the incident to law enforcement and assured that it did not disrupt their day-to-day operations.

In another incident, the OakBend Medical Center in Texas faced a cyberattack in September 2022, where the ransomware group Daixin Team claimed responsibility for stealing hundreds of thousands of employee and patient data. The hospital system reported the attack to law enforcement and the FBI, and patients' data was potentially leaked online.

Houston has also seen data breaches within its health department. In January, a technical issue in the COVID-19 test results portal caused a data breach where approximately 3,500 users may have accessed the information of 10,000 other patients. While not a result of hacking, the incident led the health department to deactivate the portal and offer free identity protection services to those impacted.

Healthcare companies are attractive targets for cybercriminals due to the vast amounts of sensitive patient information they store. As a result, medical data thefts are common and can be lucrative for claimants. For example, Gryphon Healthcare, a Houston-based services provider to healthcare organizations, detected an incident in August 2024 where a malicious attacker accessed the personal and medical data of up to 400,000 individuals.

To protect themselves from data breaches, healthcare organizations must prioritize cybersecurity and implement robust measures to safeguard patient information. Unfortunately, cybercriminals will continue to target the healthcare sector due to the high value of the data it holds.

How Hospitals Store Medical Records

You may want to see also

shunhospital

Ransomware attack on St. Luke's Health hospitals

In October 2022, St. Luke's Health hospitals in Houston were affected by a ransomware attack on their parent company, CommonSpirit Health. This led to the primary health record system being taken offline, causing disruption to patient appointments. The company stated that patient care was not impacted by the attack.

St. Luke's Health is a well-known healthcare provider, with St. Luke's Baylor in the Texas Medical Center being one of 16 hospitals in its Texas system. This system saw approximately 1.8 million patient encounters in the year preceding the attack.

Ransomware is a type of malicious software designed to block user access until a ransom is paid. In the case of healthcare providers, this can lead to doctors and providers being unable to access important patient information, such as medical history and current medications.

Following the attack, St. Luke's Health worked to restore its systems and patient portals, with the company stating that it was implementing measures to enhance security and minimize the risk of similar incidents in the future. The company also reported the incident to law enforcement and engaged the services of cyber security experts to mitigate the disruption.

The ransomware attack on St. Luke's Health hospitals highlights the increasing vulnerability of the healthcare system to cyber attacks as it becomes more reliant on technology. As such, it is crucial for healthcare providers to prioritize the security and protection of sensitive patient information.

shunhospital

Daixin Team steals data from CommonSpirit hospitals

In a brazen act of cybercrime, the Daixin Team has struck again, this time targeting CommonSpirit hospitals. This ransomware group has been actively targeting the healthcare sector, and their latest attack on CommonSpirit, a Chicago-based healthcare provider with 140 hospitals across 21 states, has raised serious concerns. The attack forced CommonSpirit to shut down its computer systems temporarily, impacting patient care and even resulting in a tragic medication overdose for a toddler in Iowa.

The Daixin Team's breach of CommonSpirit hospitals is just one in a series of cyberattacks on healthcare organizations. Health care companies that store sensitive patient information have become a common target for cybercriminals. In Houston, Texas, HCA Healthcare, which operates numerous hospitals in the region, recently announced a data breach affecting approximately 11 million patients. Personal information was stolen and posted online, causing widespread concern among patients and highlighting the vulnerability of healthcare systems to malicious cyber activities.

The Houston Health Department also experienced a data breach on its COVID-19 test results portal, exposing patient names, addresses, birth dates, email addresses, and test results. While this incident was attributed to a technical issue, it further underscores the challenges faced in protecting sensitive healthcare data.

The Daixin Team's attack on CommonSpirit hospitals is a stark reminder of the critical need for robust cybersecurity measures in the healthcare industry. As cybercriminals continue to target healthcare organizations, hospitals must invest in stronger security protocols and remain vigilant to protect patient privacy and prevent potentially life-threatening consequences.

The ransomware group's modus operandi involves infiltrating computer systems and encrypting critical data, demanding a ransom payment in return for the decryption key. In the case of CommonSpirit hospitals, the full extent of the data breach is still being investigated, and law enforcement has been notified. The healthcare sector is urging all hospitals to enhance their cybersecurity measures to safeguard patient information and maintain the integrity of their systems.

Syria's Hospitals: How Many Still Stand?

You may want to see also

Frequently asked questions

11 HCA Houston Healthcare hospitals were affected, including the Woman's Hospital of Texas and Texas Orthopedic Hospital.

The data was stolen by a cybercriminal or group of cybercriminals. The specific individual or group has not been identified.

Personal information about approximately 11 million patients was stolen and posted online. This included names, addresses, birth dates, email addresses, and test results.

HCA Healthcare has reported the data breach to law enforcement and is investigating the incident. The Houston Health Department has expressed regret for the incident and a commitment to safeguarding patient privacy.

Written by
Reviewed by
Share this post
Print
Did this article help you?

Leave a comment