Methodist Hospital McKinney Cyber ​​Attack: Personal Data Hacked

The hacking took place on July 5, when hospital staff “became aware of unusual activity on certain systems,” officials said.

MCKINNEY, Texas — Methodist McKinney Hospital and two of the company’s surgical centers had hacked their computer systems earlier this summer, exposing patients’ Social Security numbers, medical histories and more, hospital officials said Tuesday.

The hacking took place on July 5, when hospital staff were “notified of unusual activity on certain systems,” according to a report on the hospital’s website.

The message said the hospital “took prompt steps to better ensure the integrity of its systems” and then began investigating what had happened.

The hospital confirmed that an “unauthorized actor” had access to computer systems containing data for Methodist McKinney Hospital, Methodist Allen Surgical Center and Methodist Craig Ranch Surgical Center.

The data was from May 20 to July 7, and certain files were copied during the hacking, hospital officials said.

The hospital is still collecting information about the entrances during the cyber attack. The hospital will notify people whose information has been accessed as they learn it.

The hospital’s investigation found that the following information was stored in the hacked systems: names, addresses, social security numbers, dates of birth, medical history, medical diagnoses, treatment information, medical record numbers and health insurance information.

Methodist officials said they reported the cyber attack to federal police. The hospital is also “reviewing and improving existing policies and procedures” on preventing cyber-attacks.

The hospital advised anyone whose information was accessed – or anyone who believes their information may have been accessed – to check their accounts. Officials reminded people that they can get a free credit report (one per year) from Equifax, Experian or TransUnion. Credit reports can be ordered here.

Add a Comment

Your email address will not be published.