Ascension, a leading private healthcare provider in the U.S., has suffered a data breach impacting over 437,000 patients, exposing sensitive personal and health information. The breach was linked to a third-party software vulnerability and involved a security incident in December, leading to significant data theft and operational disruptions. (Affected: Patients, healthcare system)
Keypoints :
- Over 437,000 individuals’ personal and health data were compromised in the breach.
- The incident involved theft of personal information such as SSNs, addresses, and medical records.
- Ascension identified the breach through an investigation initiated after learning of a security incident in December 2024.
- The breach was caused by a vulnerability in third-party software exploited during a widespread ransomware attack.
- Ascension offers two years of free identity monitoring to affected individuals.
- The healthcare provider previously experienced a major ransomware attack in May 2024 affecting 5.6 million patients and employees.
- The attacks disrupted healthcare operations, including canceling elective procedures and redirecting emergency services.
Views: 12