On August 1, 2024, Roseland Community Hospital Association filed a notice of data breach with the U.S. Department of Health and Human Services after discovering that an unauthorized party accessed confidential patient information. The breach resulted in the exposure of sensitive data, including patient names, dates of birth, addresses, medical record numbers, patient account numbers, health insurance information, and details regarding diagnoses and treatments. Following the incident, Roseland began sending data breach notification letters to all individuals affected by the security breach.
The breach was first detected on June 2, 2024, when Roseland noticed unusual activity within its computer network. In response, the hospital secured its systems, notified law enforcement, and initiated an investigation to determine the extent of the breach and its impact on patient data. The investigation revealed that an unauthorized party had accessed Roseland’s IT network and copied confidential patient information while inside the system.
Roseland Community Hospital undertook a thorough review of the compromised files to ascertain what specific information was leaked and which patients were impacted. The leaked information varied by individual but could potentially include critical personal and medical details. Once the analysis was complete, the hospital acted swiftly to notify affected individuals about the breach and the nature of the information compromised.
Founded in 1924, Roseland Community Hospital is a healthcare provider located in Chicago, Illinois, offering a range of medical services, including pediatric care, emergency services, and behavioral health. With over 594 employees, the hospital generates approximately $16 million in annual revenue. The incident underscores the importance of data security in healthcare settings, prompting Roseland to reinforce its security measures to protect patient information and prevent future breaches.
Reference: