SECURITYWEEK NETWORK:

ICS:

Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Data Breaches

460k Impacted by Kootenai Health Ransomware Attack

Kootenai Health says the personal and health information of over 460,000 individuals was stolen in a ransomware attack.

Coeur d’Alene, Idaho-based healthcare provider Kootenai Health has disclosed a data breach impacting the personal and health information of more than 460,000 individuals.

The incident was identified on March 2, when certain IT systems were disrupted, the organization, which provides healthcare services in northern Idaho and throughout the Inland Northwest, said in a notice on its website.

Subsequently, Kootenai Health discovered that the attackers had access to its network for over a week, and that certain data was exfiltrated on February 22, including personally identifiable information (PII) and protected health information (PHI).

The stolen information includes names, dates of birth, Social Security numbers, driver’s license numbers, government-issued identification numbers, medical treatment information, medical record numbers, medical diagnoses, medication details, and health insurance information.

The healthcare provider says that the incident did not impact its operations and that its hospitals and clinics continued to serve patients.

On August 12, Kootenai Health sent written notification letters to the impacted individuals. The organization submitted a copy of the letter to the Maine Attorney General’s Office, revealing that 464,088 people were affected.

Advertisement. Scroll to continue reading.

Kootenai Health is providing the impacted individuals with 12 months of credit and identity protection services.

While the healthcare organization did not share specific details on who was responsible for the data breach, the 3AM ransomware gang claimed responsibility for the attack in March.

The group has since published a 22 gigabytes archive containing data allegedly stolen from Kootenai Health, which suggests that the healthcare provided did not pay a ransom.

Related: 200k Impacted by East Valley Institute of Technology Data Breach

Related: Physical Security Firm ADT Confirms Hack and Data Breach

Related: Wawa Agrees to Payment, Security Changes for ’19 Data Breach

Related: Key Lawmakers Float New Rules for Personal Data Protection; Bill Would Make Privacy a Consumer Right

Written By

Ionut Arghire is an international correspondent for SecurityWeek.

More from

Latest News

Trending

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Webinar: A Step-by-Step Approach to AI Governance
April 28, 2026

With "Shadow AI" usage becoming prevalent in organizations, learn how to balance the need for rapid experimentation with the rigorous controls required for enterprise-grade deployment.

Register

Virtual Event: Threat Detection and Incident Response Summit
May 20, 2026

Delve into big-picture strategies to reduce attack surfaces, improve patch management, conduct post-incident forensics, and tools and tricks needed in a modern organization.

Register

People on the Move

Neill Feather has been named Chief Executive Officer at Point Wild.

Oasis Security has appointed Michael DeCesare as President.

Sterling Wilson has joined IGEL as Global Field CTO, Business Continuity and Disaster Recovery.

More People On The Move

Expert Insights

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest cybersecurity news, threats, and expert insights. Unsubscribe at any time.