Cyber Incident Victim: Northwestern Memorial HealthCare

The Northwestern Memorial HealthCare data breach originated through a third-party vendor, Blackbaud, which provided fundraising database management services. Blackbaud notified Northwestern in mid-July 2020 that an unauthorized individual had accessed its systems between February 7 and May 20, 2020. The attacker potentially acquired a backup database containing donor and patient information associated with charitable contributions. Northwestern clarified that the breach did not directly target its health system infrastructure and confirmed no compromise of its electronic medical record platforms. Exposed data included names, ages, genders, dates of birth, medical record numbers, dates of service, treatment departments, treating physicians, and limited clinical details. Five individuals experienced exposure of highly sensitive information including Social Security numbers, financial account details, and payment card data.

Northwestern Memorial HealthCare formally reported the incident affecting approximately 56,000 records to the U.S. Department of Health and Human Services. The organization emphasized through spokesperson Christopher N. King that the breach stemmed exclusively from the Blackbaud system compromise. While forensic investigation confirmed the absence of direct infiltration into Northwestern's clinical systems, the incident exposed substantial volumes of protected health information linked to donation activities. No evidence suggested misuse of the accessed data at the time of disclosure. The breach occurred amid a documented industry-wide surge in healthcare hacking incidents, though Northwestern's response focused exclusively on containment through vendor coordination and regulatory compliance measures without disclosing specific remediation steps taken internally.