In a regulatory filing, Community Health Systems (NYSE:CYH) reports that Chinese hackers breached its computer network and stole non-medical identification data pertaining to ~4.5M patients from its physician practice operations. The attack occurred sometime between April and June 2014. The pilfered information did not include credit card, medical or clinical data but did include patient names, addresses, birth dates, telephone numbers and social security numbers.
The company and its forensic expert, Mandiant, have removed the malware from its systems and implemented protective measures to prevent future attacks. It is proceeding with notifying affected patients and is working with law enforcement to identify and prosecute the responsible parties.