Dynamic Health Care Malware Attack Affects Multiple Nursing and Rehabilitation Facilities in Illinois
Patients and staff members at several nursing and rehabilitation facilities in Illinois are being notified that some of their protected health information has potentially been compromised in a cyberattack on Dynamic Health Care, Inc.
Dynamic Health Care provides consulting, administrative, and back office services to nursing and rehabilitation facilities in Illinois that require access to certain staff and patient data. On November 8, 2020, Dynamic Health Care discovered malware had been installed on certain computers within its network. An investigation was launched into the malware incident to determine the full nature and scope of the incident.
Dynamic Health Care confirmed an unauthorized individual had accessed its network on or around November 8, 2020 and on January 7, 2021, it was determined that during the time that access to the network was possible, the attacker potentially viewed or acquired information about staff and nursing home residents at facilities including Woodbridge Nursing Pavilion, Waterfront Terrace, Bridgeview Health Care Center, Willow Crest Nursing Pavilion, Ottawa Pavilion, and River North of Bradley Health & Rehabilitation Center.
A comprehensive review was conducted of all data on the affected computers, which confirmed that sensitive data had been exposed. The types of information potentially compromised in the attack varied from individual to individual and may have included name, date of birth, Social Security number, treating nursing care facility name, resident identification number, and dates of admission and/or discharge.
Dynamic Health Care has mailed notification letters to all individual affected by the incident. Dynamic Health Care said strict security measures had been implemented to protect all information in its possession, but these measures have now been strengthened following the breach. Additional training and education have also been provided to the workforce to help prevent further breaches in the future.