SEATTLE – DECEMBER 22, 2023 – Fred Hutchinson Cancer Center has recently communicated to its patients regarding a data security incident detected on November 19, 2023. The organization promptly responded by securing the clinical network and informing federal authorities. A third-party forensic security firm has since joined the investigation to ascertain the extent of the breach.
According to the findings from the investigation, an unauthorized party accessed patient information from Fred Hutch systems between November 19 and November 25, 2023. The compromised information varied by individual and may include sensitive data such as names, addresses, phone numbers, email addresses, dates of birth, Social Security numbers, health insurance details, medical record numbers, patient account numbers, service dates, and certain clinical information. Thankfully, the electronic medical record system was not affected, and all Fred Hutch clinics have remained operational throughout this troubling period.
On December 20, 2023, Fred Hutch began to send letters to the individuals whose information was compromised, as part of their ongoing commitment to transparency. The center is extending complimentary credit monitoring and identity protection services to those whose Social Security numbers may have been involved. "We are dedicated to maintaining the trust of our patients and are taking active steps to protect their personal information," said a representative of Fred Hutch.
"We are dedicated to maintaining the trust of our patients and are taking active steps to protect their personal information,"
Patients are encouraged to monitor their health insurance statements and report any inaccuracies to their insurance providers immediately. In addition, for those with questions or concerns, Fred Hutch has established a dedicated call center, operating from Monday to Friday, 6 a.m. to 6 p.m. Pacific Standard Time. The hotline is available at 1-888-983-0612, and additional security information can be accessed on the Fred Hutch data security webpage.
Physical security measures and systems are a priority for Fred Hutch as an institution deeply rooted in patient care and research. "We understand the importance of safeguarding our patients' personal information, and we are committed to continuous improvement and vigilance in our security protocols," said the Fred Hutch spokesperson.
"We understand the importance of safeguarding our patients' personal information, and we are committed to continuous improvement and vigilance in our security protocols,"
The facility is recommending that individuals stay alert to prevent potential fraud or identity theft. Suggested practices include reviewing account statements, scrutinizing credit reports, and notifying financial institutions of any suspicious activities. Furthermore, the Federal Trade Commission (FTC) provides additional resources to aid individuals in protecting their identities.
The FTC offers guidance on whatever steps individuals can take to safeguard against identity theft, including establishing fraud alerts or security freezes on their accounts. Resources can be found through the FTC's identity theft website or by contacting their office directly at 1-877-ID-THEFT (1-877-438-4338).
Media inquiries can be directed to Fred Hutch's media contact at media@fredhutch.org or by calling 206.667.2210.
Looking Ahead
This incident reflects an ongoing concern across the healthcare sector regarding data security, which has become increasingly paramount as cyberattacks become more sophisticated. Looking ahead, Fred Hutch is committed to strengthening their defenses and maintaining high standards of patient integrity while reassessing their cybersecurity measures.