Silver Cross Hospital vendor hit by data breach

NEW LENOX, Ill. (WLS) -- Online information submitted to Silver Cross Hospital in New Lenox may have been impacted by a "potential data security incident" at one of their website management vendors, the hospital said Tuesday.

The breach impacts only data hosted by the vendor, after they performed a software upgrade in late November 2016, and does not include Silver Cross' network and patient records systems.

The vendor handles online forms that patients and others can submit with information and inquiries for the hospital.

The data includes individuals' names, street addresses, telephone numbers, email addresses, dates of birth, IP address, marital status, race, provider information, and, in some cases, Social Security numbers, health insurance numbers, and information pertaining to mental or health condition or treatment if voluntarily provided in the web form, according to the hospital. The incident affected forms submitted to the website between January 2013 and June 14, 2017.

The issue was discovered on June 14, 2017.

In a statement, Silver Cross said they are working with the vendor to investigate the matter and improve data security practices.

For more information, CLICK HERE.