250,000 Affected by Data Breach at Nacogdoches Memorial Hospital

Nacogdoches Memorial Hospital (NMH) is notifying 250,000 people that their personal and health information was compromised in a data breach.

The incident, the hospital says, occurred on January 31, after a threat actor hacked into its internal network and information systems.

This week, NMH notified the Maine Attorney General’s Office that the hackers likely accessed the information of 257,073 individuals.

The potentially compromised data, it says, includes names, addresses, phone numbers, email addresses, Social Security numbers, dates of birth, medical record numbers, account numbers, health plan beneficiary numbers, and photographs.

“Please note that we have no evidence at this time that any of your personal or health information has been misused as a result of the incident,” the hospital notes in the letters sent to the affected individuals.

NMH is encouraging the impacted people to remain vigilant, monitor their accounts, and report any suspicious activity or personal information misuse, but does not provide them with free identity theft or credit monitoring services.

The hospital says that, immediately after discovering the incident, it resecured its computer network, hardened security, and notified law enforcement.

NMH did not share details on the threat actor responsible for the attack, and SecurityWeek has not seen any known ransomware groups claiming responsibility for it.

A hospital in Nacogdoches, Texas, that opened in December 1928, NMH operates a 226-bed facility providing various healthcare services, including emergency care, cardiac care, and surgery.

Related: Healthcare IT Platform CareCloud Probing Potential Data Breach

Related: Mercor Hit by LiteLLM Supply Chain Attack

Related: Hightower Holding Data Breach Impacts 130,000

Related: Stryker Says Malicious File Found During Probe Into Iran-Linked Attack