Sutter Health warned that a data breach involving one of its vendors last spring exposed the personal information of 845,441 patients. A Nov. 3 message on Sutter Health’s website said patient information was compromised by a ransomware attack that attacked a file transfer tool. We provide “important notices and communications” to our members. According to Sutter Health, Virgin Pulse notified the company on September 22 that it was affected by a ransomware attack. “Virgin Pulse acted quickly to apply available patches, take recommended mitigation steps, and contact third party “We can confirm that we have launched an internal investigation, with the assistance of party cybersecurity experts, into the amount of data stored on our servers,” Sutter Health said. Sutter Health said it received a final report from Virgin Pulse on Oct. 24, stating that the vendor’s investigation revealed that an “unknown attacker” accessed MOVEit servers between May 30 and 31, 2023. He said it was determined that “certain data had been leaked.” Sutter Health patients said information that may have been affected included name and date of birth, health insurance information, provider name, treatment cost information, treatment information or diagnosis. . The letter said Sutter Health would provide her with one year of free access to Experian IdentityWorks. Sutter said in an online message that Social Security numbers and financial information are not affected. Patients can call the dedicated support line at 800-628-2141 from 6 a.m. and 8 p.m. Pacific Time and from 8 a.m. to 5 a.m. on Saturdays and Sundays. News of the Sutter breach comes months after a number of other organizations announced vendor data breaches related to his MOVEit tool. In June, CalPERS announced that a third-party breach affected 769,000 of its retired members, while CalSTRS announced that 415,000 of its members were affected. That month, the Associated Press reported that several federal agencies, along with “hundreds” of companies and organizations, were also attacked by cyber attackers targeting MOVEIt. KCRA 3 has reached out to Sutter Health and Virgin Pulse for more information regarding this breach.
Sutter Health warned that a data breach involving one of its vendors last spring exposed the personal information of 845,441 patients.
On Nov. 3, a message posted on Sutter Health’s website said patient information was compromised in a ransomware attack that attacked a file transfer tool called MOVEit.
Sutter Health is working with Virgin Pulse to provide “important notices and communications” to patients and members.
According to Sutter Health, Virgin Pulse notified the company on September 22 that it was affected by a ransomware attack.
“Virgin Pulse acted quickly to apply available patches, take recommended mitigation steps, and contact third party “We can confirm that we have launched an internal investigation, with the assistance of party cybersecurity experts, into the amount of data stored on our servers,” Sutter Health said.
Sutter Health said it received a final report from Virgin Pulse on Oct. 24, stating that the vendor’s investigation revealed that an “unknown attacker” accessed MOVEit servers between May 30 and 31, 2023. He said it was determined that “certain data had been leaked.”
In a letter to patients, Sutter Health said information that may have been affected includes name and date of birth, health insurance information, provider name, treatment cost information, treatment information or diagnosis. He said that it would be possible.
The letter said Sutter Health would provide one year of free access to Experian IdentityWorks.
Sutter said in an online message that Social Security numbers and financial information are not affected.
Patients can seek assistance by calling our dedicated assistance line at 800-628-2141 between 6 a.m. and 8 p.m. Pacific Time and 8 a.m. to 5 p.m. Saturday and Sunday.
News of the Sutter breach comes months after a number of other organizations announced vendor data breaches related to the MOVEit tool.
CalPERS announced in June that 769,000 retired members were affected by a third-party breach, while CalSTRS announced 415,000 of its members were affected.
That same month, the Associated Press reported that several federal agencies were also attacked by cyber attackers targeting MOVEIt, along with “hundreds” of companies and organizations.
KCRA 3 has reached out to Sutter Health and Virgin Pulse for more information regarding this breach.