Description: Dominican Hospital, part of Dignity Health, accedentially suffered from a data breach incident in August 2016. The attack compromised the name, account number, admission date, length of stay, total charges, unit they were seen in, room number they were seen in, and insurance carrier name. The health plan that received the transmission has been cooperating with the hospital and expected to provide an attestation that the errant data was destroyed. Dominican Hospital took action and provided traning sessions to their staff and took disciplinary action.

Description: CommonSpirit Health is now facing a class action lawsuit because of the cyberattacks that it faced in 2022. The lawsuit was initiated because the attacks impacted facilities across one of the largest nonprofit healthcare systems in the US. Back in the last year, CommonSpirit began reporting IT outages, EHR downtime, and appointment cancellations in early October, later confirming that these disruptions were caused by attacks. The latest lawsuit alleges that CommonSpirit lost control of highly sensitive information as a result of the breach and suggested that the health system has not been forthcoming about the breach. It was also alleged that the number of actual victims of the Data Breach may be much higher to approx twenty million individuals. The plaintiffs are seeking reimbursement for out-of-pocket costs, credit monitoring services, and improvements to CommonSpirit’s data security systems.

Description: CHI Health locations in Omaha suffered an IT security incident that affected its electronic health records and other systems. CHI had to take some information technology systems offline as a precautionary measure.

Description: CommonSpirit, the second-largest nonprofit hospital chain in the U.S., suffered a cybersecurity incident that disrupted medical services across the country. The attack caused certain IT systems including electronic health records and other systems to go offline which resulted in rescheduling some patient appointments.

Description: CHI Health locations in Omaha experienced an IT security incident that affected electronic health records and other systems of the organization. After that, some information technology systems have been taken offline as a precautionary measure for the organization notified. All CHI Health facilities in Omaha including Lakeside Hospital, Creighton University Medical Center-Bergan Mercy, and Immanuel Medical Center have been impacted. The organization also stated that their facilities are following existing protocols for system outages and taking steps to minimize the disruption.

Description: The parent company of St. Luke's was the victim of a ransomware attack that affected the company's facilities in 22 states. Vital digital records have been replaced by slow, unfamiliar, and occasionally incomplete paper records as a result of the ransomware attack, which has caused a "internal calamity." CommonSpirit Health stated, "We are taking steps to alleviate the disruption and maintain continuity of service. Patient care is our first concern. We apologise for any inconvenience.

Description: One of the largest nonprofit healthcare systems in the U.S., CommonSpirit targeted by a ransomware attack that caused widespread IT outages at hospitals across the country. This attack impacted several electronic health record systems across the country. They investigated the incident and hired cybersecurity specialists to deal with the response and contain the incident.