Cyber attack on Klickitat Valley Health compromised patients' sensitive information

Washington-based healthcare provider Klickitat Valley Health suffered a serious cyber security incident that compromised the sensitive personal information of its patients.

 

Headquartered in Goldendale, Washington, Klickitat Valley Health is a nonprofit, critical access hospital and healthcare provider catering to more than 5,000 residents in the eastern part of Klickitat County in Washington state. 

 

In a data security incident notice published on its website, KVH said that on February 23, it detected unusual activity in its internal network. The healthcare provider immediately launched an investigation, with assistance from external cyber security experts, to determine the nature and scope of the incident.

 

“The investigation determined that on February 18, 2025, an unauthorised person obtained copies of certain files from our systems,” the hospital said.

 

The compromised data included names, addresses, dates of birth, Social Security numbers, health insurance information, medical record numbers and patient account numbers, dates of service, physician names and departments, diagnosis or other treatment information. 

 

It has, however, clarified that no financial account details and payment card information were compromised during the incident. The healthcare provider is yet to share how many individuals were affected by the data security incident.

 

“We are continually enhancing the security of our electronic systems and the patient data we maintain to help prevent events such as this from occurring in the future,” the healthcare provider added.

KVH has advised all affected individuals to regularly monitor their credit reports, account and benefit statements and report any suspicious activity to law enforcement authorities, including the police and the state attorney general. 

 

Recently, a relatively new ransomware group going by the name Kraken ransomware claimed responsibility for the cyber attack on KVH and listed it as a victim on its data leak site. The healthcare provider has not responded to the hacker group’s claims nor has it shared details on whether it paid a ransom.