McLaren Health Care Caught in Data Breach

McLaren has begun mailing notice letters to the impacted individuals.

By HFT Staff


On or about August 22, 2023, McLaren Health Care became aware of suspicious activity related to certain computer systems. McLaren immediately launched an investigation with the assistance of third-party forensic specialists to secure their network and to determine the nature and scope of the activity. Through the investigation, it was determined that there was unauthorized access to McLaren’s network between July 28, 2023, and August 23, 2023. On August 31, 2023, they learned the unauthorized actor had the ability to acquire certain information stored on the network during the period of access. As part of their ongoing investigation, McLaren undertook a thorough review of the potentially impacted files to determine whether any sensitive information was present. It was through this process, which concluded on October 10, 2023, that they determined that information pertaining to certain individuals may have been included in the potentially impacted files. 

McLaren is mailing notice letters to impacted individuals for whom they have valid mailing addresses. This letter will include resources that individuals can reference to further protect their information.  

The information impacted varied by individual and not all information was available for every individual. The information that may have been impacted includes some combination of certain individuals’ names and the following: Social Security number, health insurance information, date of birth, and medical information including billing or claims information, diagnosis, physician information, medical record number, Medicare/Medicaid information, prescription/medication information, diagnostic results and treatment information. 

Upon learning of this event, McLaren immediately took steps to secure their network and maintain operations in a safe and secure fashion. McLaren are working to review their existing policies and procedures and to implement additional administrative and technical safeguards to further secure the information on their systems. Notice was also provided to federal law enforcement and to the U.S. Department of Health and Human Services.  



November 16, 2023


Topic Area: Information Technology , Safety , Security


Recent Posts

Choosing a Disinfectant That Kills Biofilm

Bacteria form biofilms in pipes from which cells can be released during sink use and spread outside the drains in droplets or as aerosols.


Third-Party Data Breach Case Underscores Need for Cyber Risk Management

Plaintiffs alleged negligence in safeguarding patient data; defendants denied wrongdoing but settled to avoid litigation costs.


Northwest Medical Specialties Reports Data Breach

An investigation determined that certain data within the network was potentially copied without authorization on August 15, 2025.


Streamlined Integrated Project Delivery Tackles Design Challenges

Successful implementation of IPD Light can improve patient care, project outcomes and bottom lines.


Encompass Health Rehabilitation Hospital of Central Florida - Sumter County Opens

It is a satellite location of Encompass Health Rehabilitation Hospital of Central Florida.


 
 


FREE Newsletter Signup Form

News & Updates | Webcast Alerts
Building Technologies | & More!

 
 
 


All fields are required. This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.