Chattanooga Heart Institute (CHI) faces the aftermath of a cyberattack that occurred in mid-March of the previous year, compromising the data of 413,236 patients and associates. The attack was detected between March 8th and March 16th, 2023, but CHI only became aware of the cyber threat on April 17th. The stolen information includes a broad range of details such as names, addresses, email addresses, phone numbers, birthdays, driver’s license numbers, Social Security Numbers, account information, health insurance data, diagnosis and condition details, lab results, medications, demographic data, and some financial information.
The assailant had access to CHI’s network environment for approximately eight days before detection. CHI took steps to investigate the incident, and it was confirmed in December 2023 that the stolen data pertained to patients, employees, and employee dependents. Notifications about the breach were sent in waves, with the latest batch issued on February 13th, 2024. The compromised information, including medical and financial details, poses significant risks, prompting the affected parties to take immediate action to safeguard themselves from potential identity theft and misuse of their sensitive data.
