In October 2021, a cyber-attack impacted critical IT systems supporting health-care providers across Newfoundland and Labrador. Through an investigation into this cyber-attack, it was determined that the incident was a ransomware attack involving Hive ransomware, and that some personal information and personal health information belonging to clients and employees was taken from certain systems. For more information regarding the cyber-attack and preventative measures being taken, please see the Government of Newfoundland and Labrador’s report Overview: Cyberattack on the Newfoundland and Labrador Health Care System. Due to the privacy breach resulting from the cyber-attack, clients, as well as current and former employees, physicians and locums, were offered access to register for free credit monitoring and identity theft protection services through Equifax Canada by September 30, 2023.
Additional information about the privacy breach for clients and employees is included in the following notifications.
- Clients and former clients: Public notification of privacy breach of personal health information
- Employees and former employees: Notification of a privacy breach of current and former employee’s personal information
Eastern Health takes confidentiality and privacy very seriously and deeply regrets that this has happened. We would like to apologize and provide assurance of our continued commitment to the protection of the privacy of our employees, patients, clients and other members of our community.
Latest public service announcement (December 8, 2022): Eastern Health Provides Update on Privacy Breach
Further information, including a list of frequently asked questions, is available on the Government of Newfoundland and Labrador website.
If you have any questions about your personal information and personal health information as it relates to this cyber-attack, please contact the toll-free information line at 1-833-718-3021.