Cyber Incident Victim: Overlake Medical Center & Clinics

On June 14, 2022, Overlake Medical Center & Clinics in Seattle, Washington, discovered that an unauthorized party had obtained login credentials for a staff member’s email account. The organization responded within hours by securing the compromised account. Investigation revealed the unauthorized access occurred between June 13 and June 14, 2022. The breached email account contained patient names, dates of birth, patient account numbers, medical record numbers, health insurance details, dates of service, treatment cost information, and limited health information tied to billing processes. Overlake identified 557 individuals whose data was potentially exposed during the intrusion. The hospital found no evidence suggesting the accessed information had been misused or further disseminated by the threat actor. The incident did not disrupt broader hospital operations or electronic medical record systems, as the compromise was confined to the single email account.

Overlake notified all affected individuals via mailed letters detailing the specific types of data exposed in their cases. The organization emphasized its existing "robust information security program" and commitment to protecting patient and employee data. Mitigation efforts included immediate steps to contain the breach and ongoing enhancements to prevent recurrence. Overlake reinforced staff training programs to improve email security practices and general cybersecurity awareness. No ransomware, data theft demands, or systemic network compromises were reported in connection with the incident. The hospital did not disclose whether law enforcement was involved or if external forensic experts assisted in the investigation. Overlake’s public statement expressed regret for potential patient concerns but affirmed confidence in its security protocols and continuous improvement measures.