Patients of at least seven hospitals in Washington state affiliated with CommonSpirit have been affected by a data breach involving the hospital chain’s October ransomware incident.
Even more hospitals and their patients might also be among those affected by breaches as the Chicago-based medical giant continues to investigate the incident and review files compromised in the attack.
In a Thursday statement, CommonSpirit says data files from seven hospitals – collectively called Virginia Mason Franciscan Health, an affiliated entity of CommonSpirit – were compromised in the ransomware incident that was detected on Oct. 2.
CommonSpirit says its investigation determined that an unauthorized third party gained access to certain portions of the organization’s network between Sept. 16 and Oct. 3. “During that time, the unauthorized third party may have gained access to certain files, including files that contained personal information.”
The seven hospitals are St. Michael Medical Center, St. Anne Hospital, St. Anthony Hospital, St. Clare Hospital, St. Elizabeth Hospital, St. Francis Hospital and St. Joseph Hospital.