Hacker Obtains Information from 3.7 Million Healthcare Patients

The hacker could have obtained sensitive information, such as names, addresses, and social security numbers.

Reminiscent of a recent cyberattack against a hospital, Banner Health along with 3.7 million patients, were the latest victims of a cyberattack.

The healthcare company operates several hospitals and specialty facilities. The company mailed letters to 3.7 million patients, health plan members, food and beverage customers, physicians, and healthcare providers alerting them of the situation.

They also hired a forensics team, and initiated steps to preventing future attacks. The company’s system that processes credit card payments was the initial point of attack, eventually leading the hacker to additional patient information, according to a press release from Banner.

Originally, the hacker obtained credit card data, such as names, card numbers, expiration dates, and verification codes. Their investigation found that only payments made for food and beverages during June 23 and July 7 this year have been compromised in certain locations.

Additionally, information about health plans, such as names, birthdates, addresses, physician names, health insurance information, and social security numbers have likely been compromised, according to Banner.

The company has ensured that customers can continue to use their credit cards for purchases, since they have blocked attackers and are creating an enhanced security system, according to the press release. They are also suggesting that customers review their bank statements for any fraudulent activity, and report any unauthorized charges.

To resolve any issues, Banner is offering a free 1-year membership in monitoring services to anyone that was affected by this cyberattack.