On January 17, 2025, Allegheny Health Network (“AHN”) filed a notice of data breach with the Attorney General of Massachusetts after discovering that an incident at one of the company’s vendors—IntraSystems, LLC— resulted in the compromise of AHN patient information. In this notice, AHN explains that the incident resulted in an unauthorized party being able to access consumers’ sensitive information, which includes their names, dates of birth, addresses, Social Security numbers, financial account numbers, health insurance information, treatment information, and medical device serial numbers. Upon completing its investigation, AHN began sending out data breach notification letters to all individuals whose information was affected by the recent data security incident.
If you received a data breach notification from Allegheny Health Network or the company’s vendor, IntraSystems, LLC, it is essential you understand what is at risk and what you can do about it. A data breach lawyer can help you learn more about how to protect yourself from becoming a victim of fraud or identity theft, as well as discuss your legal options following the Allegheny Health Network data breach. For more information, please see our recent piece on the topic here.
What Caused the Allegheny Health Network / IntraSystems Data Breach?
The Allegheny Health Network / IntraSystems data breach was only recently announced, and more information is expected in the near future. However, AHN’s filing with the Attorney General of Massachusetts provides some important information on what led up to the breach. AHN also posted a website notice that provides additional details about the incident.
According to these sources, IntraSystems, LLC is a third-party vendor AHN uses for hosting, managing, and securing certain computer systems that support some of AHN’s subsidiaries.
Allegheny Health Network recently learned that IntraSystems, LLC experienced a cybersecurity incident resulting in an unauthorized party being able to access certain systems containing AHN patient information between October 11, 2024 and November 19, 2024. Not all AHN patients were affected; however, those who received the services of AHN’s Home Medical Equipment and Home Infusion therapy services were among those impacted.
After learning that sensitive consumer data was accessible to an unauthorized party, Allegheny Health Network reviewed the compromised files to determine what information was leaked and which consumers were impacted. While the breached information varies depending on the individual, it may include your name, date of birth, address, Social Security number, financial account number, health insurance information, treatment information, and medical device serial numbers.
On January 17, 2025, Allegheny Health Network sent out data breach letters to anyone who was affected by the recent data security incident. These letters should provide victims with a list of what information belonging to them was compromised.
More Information About Allegheny Health Network
Allegheny Health Network is an integrated healthcare system serving western Pennsylvania and the surrounding regions. Headquartered in Pittsburgh, Pennsylvania, AHN operates a network of hospitals, outpatient centers, and primary and specialty care practices. The system provides a wide range of healthcare services, including advanced care in oncology, cardiology, orthopedics, neurology, and women's health. AHN is affiliated with Highmark Health. The network employs approximately 21,000 people and generates an estimated $4 billion in annual revenue.
