Cyber Incident Victim: Henrico Doctors' Hospital

Henrico Doctors' Hospital, based in Richmond, Virginia, detected suspicious activity within its information network on or around February 21, 2023. The hospital immediately launched an internal investigation to assess the nature and scope of the incident. Forensic analysis determined that an unauthorized party had gained access to its computer systems, enabling the removal or viewing of files containing protected health information (PHI). The compromise occurred during a limited period where the threat actor interacted with the hospital’s network infrastructure. While the investigation confirmed PHI was exposed, the specific systems targeted and the exact methods of unauthorized access were not disclosed publicly. The hospital focused its response on containment and securing its environment upon detecting the anomaly, though no explicit timeline for achieving full containment was provided in official communications. No evidence suggested that the breach extended beyond the identified files or that additional systems were compromised after the initial detection.

The hospital notified 990 affected patients through a public announcement issued by consumer rights law firm Cole & Van Note on March 3, 2023. This notification confirmed the breach involved PHI but did not specify categories of data exposed, such as medical records, financial identifiers, or Social Security numbers. Henrico Doctors' Hospital undertook obligations to inform all impacted individuals directly but did not elaborate on whether credit monitoring or identity theft protection services were offered. The incident underscored operational risks to healthcare data security but yielded no publicly reported disruptions to clinical care or hospital operations post-discovery. Third-party involvement in the forensic investigation was not detailed, though the hospital maintained control over breach notification logistics without referencing regulatory penalties or legal actions stemming from the event.