Omaha, Neb.-based CHI Health Lakeside Hospital announced Sept. 27 it was hit by a ransomware attack that may have exposed patients' protected health information, according to the Omaha World-Herald.
Hospital officials discovered Aug. 1 that a database storing EHRs had been locked as the result of ransomware. The ransomware attack specifically targeted the hospital's orthopedic clinic.
The ransomware attack only affected an older records system that held records from patients who were seen at the CHI Health orthopedic clinic before April 2016. Patient data that could have been exposed included names, dates of birth, Social Security numbers, phone numbers, addresses and medical information.
CHI Health officials said there is no evidence that patient information has been misused. However, affected patients can receive a year of complimentary credit monitoring and identity protection services.