UChicago Medical Group Leaks 38,000 Patient Records
The University of Chicago Medical Group has disclosed a cyberattack affecting approximately 38,000 patients, in which sensitive personal data was exposed. The breach occurred between July 5 and July 11, 2024, and stemmed from unauthorized access to information held by Nationwide Recovery Services, Inc., a now-former third-party vendor.
Compromised data includes names, addresses, dates of birth, Social Security numbers, financial account details, and medical-related information. UChicago is notifying affected individuals by mail.
This incident highlights the urgent need for robust cybersecurity practices and continuous situational awareness of network traffic, especially when third-party vendors are involved and when a business safeguards sensitive data. As attackers increasingly exploit external partners, organizations must proactively monitor and secure every link in their digital ecosystem to protect sensitive data and maintain trust. Read more about this story on our LinkedIn page
Compromised data includes names, addresses, dates of birth, Social Security numbers, financial account details, and medical-related information. UChicago is notifying affected individuals by mail.
This incident highlights the urgent need for robust cybersecurity practices and continuous situational awareness of network traffic, especially when third-party vendors are involved and when a business safeguards sensitive data. As attackers increasingly exploit external partners, organizations must proactively monitor and secure every link in their digital ecosystem to protect sensitive data and maintain trust. Read more about this story on our LinkedIn page