Women’s Health Care Group of Pennsylvania has notified approximately 300,000 patients that their protected health information has been compromised by a ransomware attack.
Although the ransomware became active on May 16, 2017, an investigation into the attack showed that the intruders had access to the Group’s system since January of 2017. The intruders may have had access to patients’ names, Social Security numbers, birthdates, pregnancy history, lab results, insurance information, and diagnoses. Once the ransomware was discovered, the information was restored through use of the Group’s back-up system.