The biggest health care data breaches you should know about in New York
This story originally appeared on Drata and was produced and distributed in partnership with Stacker Studio.
The biggest health care data breaches you should know about in New York
It starts with an often-paralyzing attack on computer systems. Doctors scramble to notify patients awaiting surgery that their procedures have been delayed due to a ransomware attack.
Sometimes a single cyberattack can impact hospitals across multiple states, as was the case when hackers targeted CommonSpirit Health in October 2022. Just one reported case of ransomware has allegedly led to the death of a patient. More often, patients' sensitive information is served up to a market of seedy individuals around the world ready to cash in on someone else's identity.
Health care institutions are among the most targeted businesses in the world, chiefly because they hold such sensitive information about the patients they serve. Hospitals, home health agencies, and other institutions store patients' phone numbers, Social Security numbers, addresses, and other things that would allow any would-be criminal to pose as a patient and open new credit cards or bank accounts in their name.
Drata analyzed Department of Health and Human Services data to determine which health care data breaches reported in 2022 affected the most residents in New York. Breaches that did not include locations were not included in this analysis.
Read on to see which institutions reported data breaches to the federal government in your state and explore the largest across the nation here.
1. Practice Resources, LLC network server breach
- Type of breach: Hacking/IT Incident
- Individuals affected: 942,138
- Date reported: 08/04/2022
2. Refuah Health Center network server breach
- Type of breach: Hacking/IT Incident
- Individuals affected: 260,740
- Date reported: 04/29/2022
3. Healthplex, Inc. email breach
- Type of breach: Hacking/IT Incident
- Individuals affected: 89,955
- Date reported: 04/20/2022
4. Anesthesia Associates of El Paso PA network server breach
- Type of breach: Hacking/IT Incident
- Individuals affected: 43,168
- Date reported: 09/23/2022
5. Capsule network server breach
- Type of breach: Hacking/IT Incident
- Individuals affected: 27,486
- Date reported: 05/27/2022
6. Berkshire Farm Center & Services for Youth network server breach
- Type of breach: Unauthorized Access/Disclosure
- Individuals affected: 23,058
- Date reported: 09/16/2022
7. Administrative Fund of the Detectives' Endowment Association, Inc., Police Department City of New York email breach
- Type of breach: Hacking/IT Incident
- Individuals affected: 21,544
- Date reported: 10/31/2022
8. Resource Anesthesiology Associates of IL PC network server breach
- Type of breach: Hacking/IT Incident
- Individuals affected: 18,321
- Date reported: 09/23/2022
9. Ultimate Care, Inc. email breach
- Type of breach: Hacking/IT Incident
- Individuals affected: 15,788
- Date reported: 02/23/2022
10. Lifespire Services, Inc. network server breach
- Type of breach: Hacking/IT Incident
- Individuals affected: 15,375
- Date reported: 10/07/2022