On September 8, 2024, Great Plains Regional Medical Center suffered a ransomware attack on their computer system. They secured their systems and began an investigation with the help of a cybersecurity firm. This investigation showed that an unknown person accessed and encrypted files on their systems between September 5, 2024, and September 8, 2024. They learned that the bad actor copied some of those files. They quickly restored their systems and returned to normal operations, but they also determined that a limited amount of patient information was not recoverable.
The patient information varied by individual, but may have included: name, demographic information, health insurance information, clinical treatment information, such as diagnosis and medication information, driver’s license number, and/or in some instances, Social Security number.
They are mailing letters to affected patients and offering free credit monitoring to those whose Social Security number or driver’s license number may have been involved.
To help prevent something like this from happening in the future, Great Plains Regional Medical Center has and will continue to take steps to enhance the security of their systems.
How Curated Art Elevates Senior Care Spaces
The CDC's Guide to Hand Hygiene in Healthcare
Dana-Farber, BIDMC Launch Construction of Dedicated Adult Cancer Hospital
5 Components of an Integrated Safety Culture in Healthcare
NYC Opens Therapeutic Housing Unit for Medically Vulnerable Detainees