Community Hospital of Anaconda Data Breach Investigation
Strauss Borrelli PLLC, a leading data breach law firm, is investigating Community Hospital of Anaconda (“CHA”) regarding its recent data breach. The CHA data breach may have involved sensitive personal information and protected health information belonging to an undetermined number of individuals.
ABOUT COMMUNITY HOSPITAL OF ANACONDA:
CHA is a privately owned, non-profit community hospital based in Montana. Founded in 1889, CHA offers a full continuum of care including inpatient/outpatient hospital services, physical, occupational and speech therapy, advanced imaging, oncology/hematology, urology, neurosurgery, general surgery, orthopedics, rheumatology, endocrinology, obstetrics, family medicine, long-term care, and hospice/home health services.3 In addition, CHA offers a full range of visiting specialists, alleviating the need for members of the community to travel outside Anaconda for specialized services.3 Headquartered in Anaconda, Montana, CHA employs over 400 individuals.
WHAT HAPPENED?
Recently, CHA announced that it had experienced a data breach in which sensitive personal identifiable information and protected health information in its care may have been compromised. According to the breach notice, on August 12, 2024, CHA became aware of unusual activity that disrupted access to certain IT systems.1 As a result, CHA launched an investigation to determine the nature of the incident.
Through its investigation, CHA confirmed that sensitive personal information in its systems may have been viewed and obtained by an unauthorized third party between August 10 and August 12, 2024. As a result, CHA began a review of the data to determine what information had been impacted as well as identify the specific individuals affected. In May 2025, CHA completed this review. While the information impacted varies depending on the individual, the type of information potentially exposed includes:
- Name
- Social Security number
- Date of birth
- Driver’s license or state identification numbers
- S. military identification numbers
- Passport numbers
- Financial account information
- Patient account numbers
- Medical record numbers
- Medicare and Medicaid numbers
- Treatment information
- Health insurance information
On May 19, 2025, CHA posted a notice of the incident on its website. Additionally, on the same date, CHA began sending breach notification letters to impacted individuals. Based on the website breach notice, CHA is providing affected individuals with a list of the specific types of sensitive information impacted. A link to the form breach notification that CHA posted to its website is below.
If you received a breach notification letter from Community Hospital of Anaconda:
We would like to speak with you about your rights and potential legal remedies in response to this data breach. Please fill out the form, below, or contact us at 872.263.1100 or sam@straussborrelli.com.
LINKS:
[1] https://communityhospitalofanaconda.org/notice-of-data-security-incident/
[2] https://mm.nh.gov/files/uploads/doj/remote-docs/community-hospital-anaconda-20250519.pdf
[3] https://communityhospitalofanaconda.org/about-us/
[4] https://www.linkedin.com/company/community-hospital-of-anaconda/about/
