Cyber Incident Victim: Saint Anthony Hospital
Date:
Feb 2025
Location:
United States of America
Summary
Saint Anthony Hospital experienced a cybersecurity incident involving unauthorized access to a limited number of employee email accounts, potentially compromising personal and protected health information. The compromised data may include names, addresses, dates of birth, Social Security numbers, medical record numbers, treatment details, prescription information, and diagnosis history. The organization initiated remediation efforts, engaged third-party cybersecurity experts, and notified law enforcement. While the investigation remains ongoing, there is no evidence of identity theft or financial fraud resulting directly from the breach. Affected individuals, including patients and staff, were advised to monitor their accounts and credit reports for suspicious activity, with the hospital offering a dedicated support line for further assistance.
| CIA Posture | Motives | Tactics, Techniques & Procedures |
|---|---|---|
| Available to members | 0 motives | 0 techniques |
| Threat Actors | Type | Location |
|---|---|---|
| 0 actors | Available to members | Available to members |
Description
On or about February 6, 2025, Saint Anthony Hospital detected unauthorized access to a limited number of employee email accounts. The hospital immediately initiated remediation efforts and launched an investigation with third-party cybersecurity professionals to determine the nature and scope of the breach. While the investigation remains ongoing, preliminary findings indicate the unauthorized party potentially accessed personal information and protected health information during the incident. Saint Anthony Hospital reported the breach to law enforcement authorities but has not disclosed specific technical details about the attack vector or duration of unauthorized access. The compromised data may include full names, addresses, dates of birth, Social Security numbers, medical record numbers, patient account numbers, prescription information, treatment histories, and diagnosis details. No evidence of actual misuse for identity theft or financial fraud has been identified as a direct result of the incident. The hospital emphasized its commitment to securing personal information through enhanced internal controls and security practices while continuing to assess potential impacts on individuals served by the institution and its workforce.
Saint Anthony Hospital established a dedicated toll-free response line (877-580-4384) staffed with incident specialists available on weekdays from 8:00am to 5:00pm CT to address inquiries about the breach. While formal individual notifications are pending final investigation results, the hospital proactively provided detailed guidance on credit monitoring through fraud alerts and security freezes with the three major credit bureaus. The public notice included specific recommendations for reviewing health insurance statements and explanation of benefits documents to detect potential medical identity theft. State-specific resources were enumerated for residents of Iowa, Maryland, Massachusetts, New York, North Carolina, Oregon, Washington D.C., New Mexico, and Rhode Island, including attorney general contact information and jurisdictionally relevant identity theft protections. The hospital's response measures focused on enhancing existing security protocols for personal data protection while maintaining transparency about the potential risks stemming from the email account compromise.