YORK, Maine — York Hospital has been hit by cyber criminals who stole identifying information from employees, but the hospital says patient information was not targeted.
A press release sent out Wednesday afternoon said there is no indication at this time that patient health information, which is stored on a system separate from staff employment information, was targeted in the Feb. 22 attack, nor was any medical information of York Hospital staff compromised.
Jody Merrill, director of marketing, said employee names, addresses, social security numbers and 2015 wage information were stolen, but no bank information. She said she could not discuss the breach further, nor could she talk about how it was discovered because those matters are under investigation.
York Hospital is working with the Boston office of the FBI to learn the identity of those responsible for this crime “so that they can be prosecuted to the fullest extent of the law,” the press release states.
The hospital has engaged legal counsel for the benefit and future protection of the entire organization, and steps are being taken by information technology, human resources, and hospital leadership to ensure that no future thefts occur, according to the press release.
“I am very sorry that we have been victimized by these predatory thieves,” said hospital President Jud Knox. “My deepest apologies to all for the anxiety, disruption, and inconvenience this crime creates for everyone. I commit to providing protection and support for everyone at York Hospital.”
Identity theft security and mitigation services will be available to all staff at no cost to them so that credit rankings, bank accounts and IRS status can be protected for the upcoming year, according to staff.