Resolute Health Hospital
Your Personal Info Could Be
Exposed Online After
This Hospital Breach
Breach Description
Resolute Health Hospital in New Braunfels, Texas, along with Baptist Medical Center in San Antonio, experienced a significant cybersecurity breach that was reported on April 20, 2022. The breach involved the exfiltration of data by an unauthorized third party who accessed certain systems within the hospitals’ network between March 31 and April 24, 2022.
Details of the Breach
The unauthorized party gained access to systems containing personal and medical information of patients. The compromised data included demographic information such as full names, dates of birth, and addresses; Social Security numbers; health insurance information, including insurer names and policy/group numbers; medical information, such as medical record numbers, dates of service, provider and facility names, chief complaints or reasons for visit, and other visit-related procedure and diagnosis information; and billing and claims information, such as account and claim statuses, billing and diagnostic codes, and payor information
Notably, driver’s license numbers, credit and debit card information, bank account information, and account passwords were not involved in the cybersecurity breach
Response and Mitigation
Upon discovering the incident, the hospitals immediately launched a forensic investigation, contacted law enforcement, and took steps to mitigate and remediate the incident to prevent further unauthorized activity. Security and monitoring capabilities are being enhanced, and systems are being hardened to minimize the risk of future breaches
The breach affected more than 1.24 million patients of the Texas-based Baptist Medical Center and Resolute Health Hospital
Baptist Medical Center reported the incident to the Texas Attorney General’s office as impacting 1,201,647 Texas residents, while Resolute Health reported it as impacting 52,887 Texas residents.