Ascension Health revealed another security incident this week, warning more than 100,000 people in multiple states that their information was likely accessed by hackers late last year. The hackers who exploited the vulnerability likely stole demographic information as well as Social Security numbers, clinical information and data about specific visits that included physicians’ names, diagnoses, medical record numbers and insurance company names. “Our investigation determined on January 21, 2025, that Ascension inadvertently disclosed information to a former business partner, and some of this information was likely stolen from them due to a vulnerability in third-party software used by the former business partner,” the company said. Ascension did not respond to requests for comment about the total number of victims or whether the incident was connected to last year’s ransomware attack that affected hospitals in dozens of states. It took weeks for Ascension Health to recover from the ransomware attack and dozens of hospitals run by the Catholic organization had to turn away ambulances, revert to paper records and cancel non-emergency appointments due to the technology outages. This week, employee administration company VeriSource Services said 4,052,972 people had information stolen when it was hacked in February 2024. In total, the healthcare nonprofit said 5,599,699 people had information stolen during the ransomware attack.
This Cyber News was published on therecord.media. Publication date: Thu, 01 May 2025 22:00:13 +0000