Allegheny Health Network Struck by Third-Party Vendor Data Breach

The organization is not aware of any actual or attempted identity theft or fraud as a result of this incident.

By HFT Staff


Allegheny Health Network (AHN) announced that an IT vendor – IntraSystems, LLC – responsible for hosting, managing, and securing certain computer systems that support AHN’s subsidiary Home Medical Equipment and Home Infusion companies experienced a cybersecurity incident that led to unauthorized access to those computer systems beginning on Oct. 11, 2024. AHN learned about the cyber event on Nov. 19, 2024. 

The impacted systems hosted by IntraSystems contained the information of patients who received the services of AHN’s Home Medical Equipment and Home Infusion therapy services, and an unauthorized user was able to obtain some of this information. Once discovered, immediate steps were taken to investigate and secure patient information and stop unauthorized access to the systems and the data on them. In addition to terminating the unauthorized access to the affected systems, including immediately taking those systems offline, connections with other systems were turned off to prevent additional unauthorized access. Law enforcement was also notified. 

Impacted patients are being notified by IntraSystems in accordance with HIPAA and applicable state law. The affected personal information may have included names, dates of birth, addresses, Social Security numbers, financial account numbers (but no access codes), health insurance identification numbers and other health insurance information, and treatment information including diagnoses, provider information, treatments/procedures, dates of service, prescription information, and medical device serial numbers. AHN is not aware of any actual or attempted identity theft or fraud as a result of this incident. 

Multiple other corrective actions to respond to the incident and to help ensure an incident like this does not happen again have been taken.



January 28, 2025


Topic Area: Information Technology , Security


Recent Posts

The Effect of Over-Cleaning on Human Health

Environmental services managers should be concerned and informed about the oral and dermal toxicity of all chemicals used in their facilities.


Rumored Terror Threat to Hospitals Prompts FBI Warning

Despite no threat, healthcare facilities are urged to review emergency preparedness protocols.


Ground Broken on New Johns Hopkins All Children's Hospital

The new 56-bed hospital will be on a 112-acre site in Wesley Chapel.


States Move Forward to Better Protect Senior Citizens

Senior citizens are among the most vulnerable population and require a certain level of care. States are trying to protect them.


Archer and REDA to Transform Newport Beach Building into Outpatient Center

Groundbreaking on the Newport Irvine Medical Center is scheduled for June 2025.


 
 


FREE Newsletter Signup Form

News & Updates | Webcast Alerts
Building Technologies | & More!

 
 
 


All fields are required. This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.