Colorado hospital notifies patients of data breach

Mackenzie Garrity - Print  | 

Colorado Springs, Colo.-based Rocky Mountain Health Care Services sent letters to 971 patients alerting them of a recent data breach.

The hospital became aware that an employee's laptop was stolen May 15, 2018. The laptop may have contained patient's health information. RMHCS immediately began investigating to determine what information was stored on the laptop.

RMHCS determined patients' names, addresses, dates of birth, Social Security numbers and limited medical treatment information may have been affected in the incident. The hospital reported the incident to HHS and law enforcement.

Since the incident, RMHSC has reviewed and updated its policies and procedures related to information security and mobile device management. The hospital is offering affected patients credit monitoring and identity theft restoration services.

This is not the first time laptops have been stolen at Rocky Mountain Health Care Services. In September 2017, the hospital reported a former employees' cell phone and laptop were stolen, making the May theft the second of its kind since June 2017.

Editor's note: Becker's reached out to the hospital for comment. This article will be updated as more information becomes available.

More articles on cybersecurity:
NIH should strengthen information-security controls, OIG finds
Minnesota hospital alerts 2,000 patients of phishing scheme
AdventHealth notifies 42,000 patients of data breach

© Copyright ASC COMMUNICATIONS 2019. Interested in LINKING to or REPRINTING this content? View our policies by clicking here.

To receive the latest hospital and health system business and legal news and analysis from Becker's Hospital Review, sign-up for the free Becker's Hospital Review E-weekly by clicking here.