4.5 million people's personal data stolen in U.S. hospital group hack

PanARMENIAN.Net - A major U.S. hospital group said it was the victim of a cyberattack resulting in the theft of 4.5 million people's personal data, according to BBC News.

The attack, which Community Health Systems believed originated in China, happened in April and June this year. The data included patient names, addresses, birthdates, telephone numbers and social security numbers.

The firm, which runs 206 hospitals in 29 states, is now in the process of notifying affected patients.

One security expert warned that the data could be used to steal people's identity. The FBI confirmed that it was investigating the breach.

Community Health Systems stressed that it believed no medical or credit card records were taken.

News of the attack follows several warnings, from both law enforcement and security experts, that medical equipment is at risk from hack attacks due to poor security measures.

Community Health Systems said security group Mandiant, part of FireEye, advised the company that the techniques used were similar to those used by a well-known Chinese hacking group.

However, both Community Health Systems and Mandiant declined to elaborate on the identity of the group - nor would they say whether they believed the hackers were working on behalf of the Chinese government.

In May, the U.S. charged five Chinese military officers over claims they were behind hacks on U.S. companies. The officers denied the charges, and the Chinese government said the action was "groundless" and represented "U.S. distrust".