On December 8, 2024, PIH Health posted a website notice confirming reports that the health system had experienced a cyberattack. In this notice, PIH Health explains that, while the incident is still under investigation, the organization was indeed the target of a ransomware attack. If, upon completing its investigation, PIH Health confirms that any patient data was leaked, it will be required to send data breach notification letters to all individuals whose information was compromised.
If you receive a data breach notification from PIH Health, it is essential you understand what is at risk and what you can do about it. A data breach lawyer can help you learn more about how to protect yourself from becoming a victim of fraud or identity theft, as well as discuss your legal options following a possible PIH Health data breach. For more information, please see our recent piece on the topic here.
Was There a PIH Health Data Breach?
The PIH Health cyberattack was only recently announced, and more information is expected in the near future. However, PIH Health’s website notice provides some important information on what led up to the incident. According to this source, on December 1, 2024, PIH Health was the victim of a ransomware attack that compromised the organization’s computer network. As a result of the cyberattack, the following PIH Health locations were affected: PIH Health Downey Hospital, PIH Health Good Samaritan Hospital, PIH Health Whittier Hospital, Urgent Care Centers, doctor’s offices and PIH Health’s home health and hospice agency.
In response, PIH Health began working with third-party cyber forensic specialists to investigate the incident. This investigation is ongoing, and PIH Health indicates that it has no further information at this point. However, the hackers who were allegedly behind the ransomware attack claim that the stolen data includes 17 million patient records.
If, through its investigation, PIH Health confirms that patient information was leaked as a result of the recent ransomware attack, the company will be required to send out data breach letters to anyone who was affected by the recent incident. These letters should provide victims with a list of what information belonging to them was compromised.
More Information About PIH Health
Founded in 1959, PIH Health is a non-profit, regional healthcare system with its headquarters in Whittier, California. PIH Health operates several hospitals, outpatient medical offices, and a multispecialty medical group. The company also provides home healthcare services and hospice care services, as well as heart, cancer and emergency services. PIH Health employs more than 10,000 people and generates approximately $1.5 billion in annual revenue.
