In a recent cyberattack on PIH Health, a staggering 17 million patient records, consisting of sensitive personal and medical information, have been stolen, causing widespread disruption and concern. The attack, which commenced on December 1, targeted three hospitals under the PIH Health umbrella: PIH Health Downey Hospital, PIH Health Whittier Hospital, and PIH Health Good Samaritan Hospital, along with various affiliated urgent care centers, doctors’ offices, and a home health and hospice agency.
The hackers responsible for the breach claimed to have extracted a massive 2 terabytes of data and have issued a chilling threat to release the information online unless their demands are met. In a letter purportedly sent to PIH Health, the cybercriminals warned of a “Ghost in your network” and demanded cooperation to prevent the exposure of confidential files on the internet.
The stolen data encompasses a wide range of personal and medical information, including records of 17 million patients, details of 8.1 million medical episodes, home addresses, phone numbers, workplace information, medical expenses, diagnoses, test results, patient photos, scans, treatment plans, and even sensitive internal documents such as oncology reports and private emails with patients. Additionally, approximately 100 active non-disclosure agreements and employee-related confidentiality agreements were compromised in the breach.
Despite the severity of the attack, PIH Health officials have not disclosed whether a ransom was paid or if negotiations with the hackers are ongoing. The FBI has joined forces with cybersecurity experts to probe the breach, though specific details have not been made public. PIH Health spokesperson Amanda Enriquez assured that patient care continues safely using manual documentation procedures that necessitate significant workflow adjustments.
The cyber incident has severely impacted PIH Health’s IT systems, disrupting access to patient health records, laboratory tools, radiology services, and pharmacy operations. Medical facilities have experienced internet outages, forcing staff to rely on personal cell phones and temporary hotspots for communication. Telephone services have been centralized at PIH Health Good Samaritan Hospital due to connectivity issues at other sites.
This attack underscores the vulnerability of healthcare institutions to cyber threats and underscores the critical importance of data security and patient privacy. PIH Health is diligently working to regain control of its systems, restore operations, and rebuild trust with its patient community.
As investigators and cybersecurity experts delve into the breach, PIH Health is facing a race against time to rectify the situation, secure its operations, and reassure affected individuals of their commitment to data protection. The incident serves as a stark reminder of the ever-present risks posed by cyberattacks and the pressing need for robust security measures in healthcare settings.