On April 13, 2023, Pembina County Memorial Hospital learned that an unauthorized party obtained access to Pembina’s internal network. Upon learning of this issue, Pembina secured the environment and commenced a prompt and thorough investigation in consultation with outside cybersecurity professionals who regularly investigate and analyze these types of situations. At this time, all systems and networks are secure.
The investigation is ongoing; however, Pembina believes that personal information of employees and protected health information of patients was impacted. The potentially impacted data elements may include demographic information, Social Security numbers, dates of birth, driver’s license/state IDs, and financial account information, addresses, phone numbers, patient identification numbers, health insurance information, and medical information.
Pembina has no evidence that any of the compromised information has been misused for identity theft or financial fraud. Pembina reminds its employees and patients to remain vigilant in reviewing financial account statements regularly for any fraudulent activity. Pembina also recommends that its patients review the explanation of benefits statements that they receive from their health insurance providers and follow up on any items not recognized.
Pembina continually evaluates and modifies its practices and internal controls to enhance the security and privacy of personal information.
ISSA Introduces Healthcare Platform to Advance Safer, Cleaner Patient Environments
Third-Party Tracking Settlement is a Compliance Wake-Up Call for Healthcare Facilities Managers
ECU Health Behavioral Health Hospital Hosts Ribbon-Cutting Ceremony for New Facility
Aspire Rural Health System Reports Data Security Incident
Fatal Flaws: Strategies for Active Attackers