/

HSHS Data Breach: What & How It Happened?

HSHS Data Breach: What & How It Happened?

Twingate Team

Jun 20, 2024

In August 2023, Hospital Sisters Health System (HSHS) and Prevea Health faced a significant incident resulting in disruptions to their computer systems, phone lines, and websites. Various applications, including MyChart and MyPrevea, were affected, and online payments could not be processed. Despite these issues, patient care was not interrupted. The extent of the impact and whether any data was compromised are still under investigation. HSHS and Prevea are collaborating with law enforcement and experts to resolve the situation and restore services.

How many accounts were compromised?

The data breach impacted over 100,000 people.

What data was leaked?

The data potentially exposed in the breach includes personal and protected health information of patients and HSHS employees.

How was HSHS hacked?

The cyberattack on HSHS and Prevea Health involved unauthorized third-party access to their systems containing personal and protected health information. The specific methods used by the hackers remain unclear, as the ongoing investigation involves law enforcement and third-party experts to determine the scope and impact of the breach.

HSHS's solution

In response to the hacking incident, HSHS took several measures to secure its platform and prevent future incidents. They deployed additional security measures to safeguard their systems and have not detected further unauthorized access since then. HSHS has also been working with law enforcement and third-party experts to investigate the scope and impact of the breach. While some information remains unclear, HSHS has started sending notification letters to affected individuals, offering complimentary credit monitoring and identity theft protection services.

How do I know if I was affected?

HSHS has started sending notification letters to affected individuals. If you're an HSHS patient or employee and haven't received a notification, you may visit Have I Been Pwned to check your credentials.

What should affected users do?

In general, affected users should:

  • Change Your Passwords: Immediately update your passwords for any accounts that may have been compromised. Make sure the new passwords are strong and unique, not previously used on any other platform.

  • Reset Passwords for Other Accounts: If you've used the same or similar passwords for other online accounts, reset those as well. This is crucial as attackers often try using stolen passwords on multiple sites.

  • Enable Two-Factor Authentication (2FA): Activate 2FA on any affected accounts. Consider enabling this additional security feature on all other important online accounts to significantly reduce the risk of unauthorized access.

  • Monitor Your Accounts: Keep an eye on your accounts for any suspicious activity and report it immediately to the respective platform or service provider.

Where can I go to learn more?

If you want to find more information on the HSHS data breach, check out the following news articles:

Rapidly implement a modern Zero Trust network that is more secure and maintainable than VPNs.

/

HSHS Data Breach: What & How It Happened?

HSHS Data Breach: What & How It Happened?

Twingate Team

Jun 20, 2024

In August 2023, Hospital Sisters Health System (HSHS) and Prevea Health faced a significant incident resulting in disruptions to their computer systems, phone lines, and websites. Various applications, including MyChart and MyPrevea, were affected, and online payments could not be processed. Despite these issues, patient care was not interrupted. The extent of the impact and whether any data was compromised are still under investigation. HSHS and Prevea are collaborating with law enforcement and experts to resolve the situation and restore services.

How many accounts were compromised?

The data breach impacted over 100,000 people.

What data was leaked?

The data potentially exposed in the breach includes personal and protected health information of patients and HSHS employees.

How was HSHS hacked?

The cyberattack on HSHS and Prevea Health involved unauthorized third-party access to their systems containing personal and protected health information. The specific methods used by the hackers remain unclear, as the ongoing investigation involves law enforcement and third-party experts to determine the scope and impact of the breach.

HSHS's solution

In response to the hacking incident, HSHS took several measures to secure its platform and prevent future incidents. They deployed additional security measures to safeguard their systems and have not detected further unauthorized access since then. HSHS has also been working with law enforcement and third-party experts to investigate the scope and impact of the breach. While some information remains unclear, HSHS has started sending notification letters to affected individuals, offering complimentary credit monitoring and identity theft protection services.

How do I know if I was affected?

HSHS has started sending notification letters to affected individuals. If you're an HSHS patient or employee and haven't received a notification, you may visit Have I Been Pwned to check your credentials.

What should affected users do?

In general, affected users should:

  • Change Your Passwords: Immediately update your passwords for any accounts that may have been compromised. Make sure the new passwords are strong and unique, not previously used on any other platform.

  • Reset Passwords for Other Accounts: If you've used the same or similar passwords for other online accounts, reset those as well. This is crucial as attackers often try using stolen passwords on multiple sites.

  • Enable Two-Factor Authentication (2FA): Activate 2FA on any affected accounts. Consider enabling this additional security feature on all other important online accounts to significantly reduce the risk of unauthorized access.

  • Monitor Your Accounts: Keep an eye on your accounts for any suspicious activity and report it immediately to the respective platform or service provider.

Where can I go to learn more?

If you want to find more information on the HSHS data breach, check out the following news articles:

Rapidly implement a modern Zero Trust network that is more secure and maintainable than VPNs.

HSHS Data Breach: What & How It Happened?

Twingate Team

Jun 20, 2024

In August 2023, Hospital Sisters Health System (HSHS) and Prevea Health faced a significant incident resulting in disruptions to their computer systems, phone lines, and websites. Various applications, including MyChart and MyPrevea, were affected, and online payments could not be processed. Despite these issues, patient care was not interrupted. The extent of the impact and whether any data was compromised are still under investigation. HSHS and Prevea are collaborating with law enforcement and experts to resolve the situation and restore services.

How many accounts were compromised?

The data breach impacted over 100,000 people.

What data was leaked?

The data potentially exposed in the breach includes personal and protected health information of patients and HSHS employees.

How was HSHS hacked?

The cyberattack on HSHS and Prevea Health involved unauthorized third-party access to their systems containing personal and protected health information. The specific methods used by the hackers remain unclear, as the ongoing investigation involves law enforcement and third-party experts to determine the scope and impact of the breach.

HSHS's solution

In response to the hacking incident, HSHS took several measures to secure its platform and prevent future incidents. They deployed additional security measures to safeguard their systems and have not detected further unauthorized access since then. HSHS has also been working with law enforcement and third-party experts to investigate the scope and impact of the breach. While some information remains unclear, HSHS has started sending notification letters to affected individuals, offering complimentary credit monitoring and identity theft protection services.

How do I know if I was affected?

HSHS has started sending notification letters to affected individuals. If you're an HSHS patient or employee and haven't received a notification, you may visit Have I Been Pwned to check your credentials.

What should affected users do?

In general, affected users should:

  • Change Your Passwords: Immediately update your passwords for any accounts that may have been compromised. Make sure the new passwords are strong and unique, not previously used on any other platform.

  • Reset Passwords for Other Accounts: If you've used the same or similar passwords for other online accounts, reset those as well. This is crucial as attackers often try using stolen passwords on multiple sites.

  • Enable Two-Factor Authentication (2FA): Activate 2FA on any affected accounts. Consider enabling this additional security feature on all other important online accounts to significantly reduce the risk of unauthorized access.

  • Monitor Your Accounts: Keep an eye on your accounts for any suspicious activity and report it immediately to the respective platform or service provider.

Where can I go to learn more?

If you want to find more information on the HSHS data breach, check out the following news articles: