Ardent Health Services Files Notice of Data Breach in the Wake of Ransomware Attack | Console and As

July 2024 · 3 minute read

On January 24, 2024, AHS Management Company, Inc., better known as Ardent Health Services (“Ardent”), filed a notice of data breach with the Attorney General of Texas after discovering that it was recently targeted in a ransomware attack. In this notice, Ardent explains that the incident resulted in an unauthorized party being able to access consumers’ sensitive information, which includes their names, addresses, phone numbers, email addresses, Social Security numbers, medical treatment information, health insurance and claims information, and Medicaid or Medicare numbers. Upon completing its investigation, Ardent began sending out data breach notification letters to all individuals whose information was affected by the recent data security incident.

If you received a data breach notification from AHS Management Company, Inc., it is essential you understand what is at risk and what you can do about it. A data breach lawyer can help you learn more about how to protect yourself from becoming a victim of fraud or identity theft, as well as discuss your legal options following the Ardent Health Services data breach. For more information, please see our recent piece on the topic here.

What Caused the Ardent Health Services Data Breach?

The Ardent Health Services data breach was only recently announced, and more information is expected in the near future. However, Ardent’s filing with the Attorney General of Texas provides some important information on what led up to the breach. Ardent also posted notice of the incident on its website.

According to these sources, on November 23, 2023, Ardent learned that its network had fallen victim to a ransomware attack. In response, Ardent notified law enforcement, secured its network, and launched an investigation with the help of third-party cybersecurity specialists. Shortly after discovering the attack, Ardent was able to terminate all unauthorized access.

However, the company’s investigation revealed that the unauthorized party was able to access and copy documents containing confidential patient information.

After learning that sensitive consumer data was accessible to an unauthorized party, Ardent Health Services reviewed the compromised files to determine what information was leaked and which consumers were impacted. While the breached information varies depending on the individual, it may include your name, address, phone number, email address, Social Security number, medical treatment information, health insurance and claims information, and Medicaid or Medicare number.

On January 24, 2024, Ardent Health Services sent out data breach letters to anyone who was affected by the recent data security incident. These letters should provide victims with a list of what information belonging to them was compromised. According to the Texas Attorney General Office’s “Data Security Breach Reports” website, the AHS Management data breach affected an estimated 17,500 people in Texas alone.

More Information About AHS Management Company, Inc.

Ardent Health Services is a healthcare system based out of Nashville, Tennessee. Ardent Health and its subsidiaries own and operate 30 hospitals and more than 200 healthcare facilities, employing more than 1,400 providers in six states. Ardent Health Services employs more than 23,000 people and generates approximately $2.3 billion in annual revenue.

ncG1vNJzZmivp6x7q7DSrqermV6YvK57y56emqSemsS0e8Crm56mpGK1pq3LrZ9mq5Wnw6qvxKxkn6GcmsBuus6toJydXaSzboKQcmttbWVk