Ontario hospitals send 326K letters to patients whose info was stolen in cyberattack
Advertisement
Read this article for free:
or
Already have an account? Log in here »
To continue reading, please subscribe:
Monthly Digital Subscription
$0 for the first 4 weeks*
- Enjoy unlimited reading on winnipegfreepress.com
- Read the E-Edition, our digital replica newspaper
- Access News Break, our award-winning app
- Play interactive puzzles
*No charge for 4 weeks then price increases to the regular rate of $19.00 plus GST every four weeks. Offer available to new and qualified returning subscribers only. Cancel any time.
Monthly Digital Subscription
$4.75/week*
- Enjoy unlimited reading on winnipegfreepress.com
- Read the E-Edition, our digital replica newspaper
- Access News Break, our award-winning app
- Play interactive puzzles
*Billed as $19 plus GST every four weeks. Cancel any time.
To continue reading, please subscribe:
Add Free Press access to your Brandon Sun subscription for only an additional
$1 for the first 4 weeks*
*Your next subscription payment will increase by $1.00 and you will be charged $16.99 plus GST for four weeks. After four weeks, your payment will increase to $23.99 plus GST every four weeks.
Read unlimited articles for free today:
or
Already have an account? Log in here »
Hey there, time traveller!
This article was published 03/04/2024 (611 days ago), so information in it may no longer be current.
Five Ontario hospitals affected by a ransomware attack last fall say they’re mailing more than 326,000 letters to notify patients whose personal information was stolen.
The cyberattack targeted Bluewater Health, Chatham-Kent Health Alliance, Erie Shores HealthCare, Hôtel-Dieu Grace Healthcare and Windsor Regional Hospital on Oct. 23.
The hospitals say in a joint statement that except for Bluewater Health, electronic medical records were not affected in the attack.
However, they say personal health information stored elsewhere on the hospitals’ systems was stolen and some of that data was published on the dark web.
The hospitals estimate that a total of 326,800 patients had their information stolen, but note that some of those people may have been counted more than once if they were seen at multiple hospitals.
Patients who attended more than one of the affected hospitals can expect to receive multiple notification letters.
“This incident was complex, and the data analysis took several months to complete,” the hospitals said Wednesday in their statement.
“This incident affected each hospital differently, and we took great pains to assess every impacted file to ensure that we notified all affected patients.”
Patients whose social insurance numbers were compromised will also be receiving information about credit monitoring, the statement said.
The hospitals said they discussed their patient notification approach with Ontario’s Information and Privacy Commissioner.
“To our patients, community, and health-care professionals, we truly apologize for the inconvenience this cyber attack has caused you,” they said.
In addition to the five hospitals, the ransomware attack also affected TransForm, a non-profit group tasked with overseeing the hospitals’ IT systems.
The group previously said the attack affected hospital operations as well as certain patient, employee and professional staff data, but it did not yield to ransom demands on the advice of experts.
This report by The Canadian Press was first published April 3, 2024.