Change HealthCare (CHC) Cyberattack

GBMC HealthCare was recently notified by Change HealthCare (CHC) that 5,372 GBMC patients were impacted by the cyberattack that took place in February 2024. This cyberattack impacted healthcare providers, pharmacies, and insurance companies across the country and potentially compromised the information of millions of Americans. CHC had previously advised GBMC that they had not identified any patient information associated with GBMC. GBMC has no additional information, and all questions must be directed to CHC. Any breach notification will come directly from CHC.

The following was outlined in CHC’s notice to GBMC:

CHC published a HIPAA Website Substitute Notice and established a dedicated customer call center to offer additional resources and information regarding the incident. If you have any questions or concerns, please call CHC toll-free at 1-866-674-1298, Monday through Friday, 8 a.m. to 8 p.m. CT, or visit changecybersupport.com to get more information and details on available resources.

CHC cannot confirm, nor can GBMC, exactly what data was affected for each specific individual, but CHC has stated the information involved may have included contact information (such as first and last name, address, date of birth, phone number, and email) and one or more of the following:

• Health insurance information (such as primary, secondary or other health plans/policies, insurance companies, member/group ID numbers, and Medicaid-Medicare-government payor ID numbers);
• Health information (such as medical record numbers, providers, diagnoses, medicines, test results, images, care and treatment);
• Billing, claims and payment information (such as claim numbers, account numbers, billing codes, payment cards, financial and banking information, payments made, and balance due); and/or
• Other personal information such as Social Security numbers, driver’s licenses or state ID numbers, or passport numbers.

The information that may have been involved was not the same for every impacted individual.

CHC has provided steps that individuals can take to help protect themselves (see HIPAA Website Substitute Notice) and established a dedicated customer call center to offer additional resources and information regarding the incident. GBMC is unable to answer any questions or provide any additional information related to these offers.

Again, if you have questions or concerns, please call CHC toll-free at 1-866-674-1298, Monday through Friday, 8 a.m. to 8 p.m. CT, or visit changecybersupport.com to get more information and details on available resources.