« Information Technology
  

City of Hope Experiences Data Breach

The incident occurred in October 2023.

By HFT Staff


This notice concerns an incident involving unauthorized third-party access to some of City of Hope’s systems and copying of files, including some that may have contained personal information.  

On or about October 13, 2023, City of Hope became aware of suspicious activity on a subset of its systems and immediately instituted mitigation measures to minimize any disruption to its operations.  City of Hope launched an investigation into the nature and scope of the incident with the assistance of a leading cybersecurity firm, which determined that an unauthorized third party accessed a subset of our systems and obtained copies of some files between September 19, 2023, and October 12, 2023.  City of Hope has undertaken a detailed review of the files to determine the incident’s impact and has determined that some of these files may have contained personal information. 

Related: CISA Proposes New Rule on Reporting Cyber Incidents

While the investigation remains ongoing, the impacted personal information identified thus far varies by individual but may have included name, contact information (e.g., email address, phone number), date of birth, social security number, driver’s license or other government identification, financial details (e.g., bank account number and/or credit card details), health insurance information, medical records and information about medical history and/or associated conditions, and/or unique identifiers to associate individuals with City of Hope (e.g., medical record number). 

Upon discovery of this incident, City of Hope immediately instituted mitigation measures. They then promptly implemented additional and enhanced safeguards and enlisted the support of a leading cybersecurity firm to enhance the security of their network, systems, and data. They also launched a comprehensive investigation, identified individuals affected, reported the incident to law enforcement, and notified regulatory bodies.   

City of Hope is providing identity monitoring services for two years, at no cost, to individuals whose information may have been involved. 



April 8, 2024


Topic Area: Information Technology , Security

Recent Posts

Case Study: How NYU Langone Rebuilt for Resilience After Superstorm Sandy

Although the damage was severe, it provided a valuable opportunity for NYU Langone to assess structural vulnerabilities and increase facility resilience.

Frederick Health Hospital Faces 5 Lawsuits Following Ransomware Attack

The lawsuits accuse FHH of inadequate cybersecurity, poor breach notification and failing to protect patients from identity theft risks.

Arkansas Methodist Medical Center and Baptist Memorial Health Care to Merge

They have signed a non-binding letter of intent to complete a shared mission agreement to merge the two organizations.

Ground Broken on Intermountain Saratoga Springs Multi-Specialty Clinic

The clinic is scheduled to open and start seeing patients in the fall of 2026.

Electrical Fire Tests Resilience of Massachusetts Hospital

Signature Healthcare Brockton Hospital used opportunity to renovate key systems and components and expand facility operations.

 
 


FREE Newsletter Signup Form

News & Updates | Webcast Alerts
Building Technologies | & More!

 
 
 


All fields are required. This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.