BELLIN HEALTH

Your Personal Info Could Be

Exposed Online After

This Hospital Breach

Breach Description

On October 27, 2023, Bellin Health, a healthcare system based in Wisconsin, experienced a cybersecurity breach. The breach was identified when Bellin Health’s monitoring systems detected unauthorized activity on their computer network. The information security team at Bellin Health acted promptly to contain the unauthorized activity and initiated an investigation into the incident. This cybersecurity event did not affect the day-to-day operations of Bellin Health facilities[1][6].

The investigation revealed that an unauthorized third party had accessed a specific electronic folder within Bellin Health’s network. This folder contained archived, scanned documents related to the purchase of home care equipment between the years 2006 and 2013. The files obtained by the unauthorized party included patient names and could also include one or more of the following: addresses, phone numbers, dates of birth, and certain health information related to the home care equipment. Notably, a limited number of these documents contained Social Security numbers, which, at the time, were sometimes used as Medicare ID numbers. Bellin Health clarified that their electronic medical record system was not accessed or involved in this breach[1][6].

In response to the breach, Bellin Health has taken several steps to address the situation and mitigate potential impacts on affected individuals. The healthcare system has completed its investigation with the assistance of industry experts and has reported the incident to law enforcement. Bellin Health is also continuously updating and strengthening its systems to prevent similar events in the future. Additionally, Bellin Health has begun mailing letters to individuals whose information was involved in the breach. For those whose Social Security numbers were compromised, Bellin Health is offering complimentary credit monitoring and identity theft protection services. Patients have been advised to review statements from their health insurers and healthcare providers and to report any services they did not receive[1][6].

Bellin Health has established a dedicated call center to provide assistance and answer questions from affected individuals. The call center is staffed with trained specialists and operates from 8:00 a.m. to 8:00 p.m. Central Time, Monday through Friday, excluding major U.S. holidays. The contact number for the call center is (888) 988-0385[1].

This cybersecurity event at Bellin Health underscores the importance of robust security measures and vigilant monitoring systems in protecting sensitive patient information in the healthcare sector.

Citations:

  1. https://bellin.org/dataincident
  2. https://bellin.org/documents-policies-for-healthcare/privacy-notice
  3. https://www.healthcarefacilitiestoday.com/posts/Wisconsin-healthcare-facilities-affected-by-global-ransomware-attack–15875
  4. https://www.wbay.com/2023/12/18/bellin-health-updating-patients-affected-by-cybersecurity-breach/
  5. https://ocrportal.hhs.gov/ocr/breach/breach_report.jsf
  6. https://fox11online.com/news/local/bellin-health-finishes-probe-on-cybersecurity-breach-impacting-patient-data-electronic-medicare-id-social-security-home-care-equipment-information
  7. https://casetext.com/case/sparks-v-bellin-health-systems
  8. https://www.turkestrauss.com/2023/12/28/bellin-health-data-breach-investigation/
  9. https://www.greenbaypressgazette.com/story/news/health/2023/12/18/what-to-know-about-bellin-cybersecurity-event-in-october/71962754007/
  10. https://www.wearegreenbay.com/news/local-news/bellin-health-informing-patients-of-recent-cybersecurity-event/
  11. https://privacyrights.org/data-breaches/bellin-health
  12. https://www.beckershospitalreview.com/cybersecurity/hackers-scan-documents-from-michigan-health-system.html
Breach Submission Date Dec 19, 2023
Converted Entity Name BELLIN HEALTH
Converted Entity Type Healthcare Provider
State WI
Individuals Affected 20,790
Breach Type Hacking/IT Incident

Breach Information Location Network Server

Business Associate Present Yes