On September 8, 2024, Great Plains Regional Medical Center suffered a ransomware attack on their computer system. They secured their systems and began an investigation with the help of a cybersecurity firm. This investigation showed that an unknown person accessed and encrypted files on their systems between September 5, 2024, and September 8, 2024. They learned that the bad actor copied some of those files. They quickly restored their systems and returned to normal operations, but they also determined that a limited amount of patient information was not recoverable.
The patient information varied by individual, but may have included: name, demographic information, health insurance information, clinical treatment information, such as diagnosis and medication information, driver’s license number, and/or in some instances, Social Security number.
They are mailing letters to affected patients and offering free credit monitoring to those whose Social Security number or driver’s license number may have been involved.
To help prevent something like this from happening in the future, Great Plains Regional Medical Center has and will continue to take steps to enhance the security of their systems.
EaaS: Funding Infrastructure Projects with Energy Savings
Balancing Security Systems with Patient Comfort in Healthcare
Harris Health Reports 10-Year Data Breach
Gen Z Trusts AI More Than Their Managers
CISA Lapse Amid Government Shutdown Raises Concerns for Healthcare Cybersecurity