Cancer Treatment Centers of America® at Midwestern Regional Medical CenterPatient Notification

Cancer Treatment Centers of America® (CTCA) at Midwestern Regional Medical Center in Zion, Illinois, recently learned about a security incident that may have involved certain personal information about some of our patients.

On January 18, 2021, we identified suspicious activity on the email account of a CTCA account holder. We promptly opened an investigation and retained a nationally recognized forensics firm to assist us. It appears that it was possible for an unauthorized user to access information in the email account between January 12, 2021 and January 18, 2021. The account holder’s password was promptly changed, and the previous email credentials could no longer be used to access the email account. Because we were unable to rule out the possibility of unauthorized access, we are providing notice of this event. Information in the affected mailbox may have included patient names, medical record numbers, health insurance information, CTCA account numbers, and limited medical information. Patient financial information or Social Security numbers were not involved.

Impacted patients are advised to regularly monitor any explanation of benefits statements that they receive from their health plan, to check for any unfamiliar health care services. If patients notice any health care services that they did not receive listed on one of these statements, they should contact their health plan.

We take seriously our responsibility to safeguard personal information and remain committed to protecting patient privacy and security. We have implemented additional security measures and are evaluating additional security enhancements. In addition, we continue to educate our workforce about common security threats to help ensure this does not happen in the future. If you have any questions about this situation, please do not hesitate to contact the dedicated assistance line at 1-800-234-7139