Blackbaud Ransomware Incident Affects Main Line Health Donor Database

MLH logo

MLH logo
Main Line Health announced today that it is mailing letters to its donors advising them of a data security incident that occurred at one of its vendors, Blackbaud, Inc. (“Blackbaud”). Blackbaud provides cloud-based and data solutions related to Main Line Health’s fundraising. Main Line Health began mailing letters on August 21, 2020. The affected database includes information about donors, potential donors, patients who our Development Department believes may want to support its health care mission, and others in the community with whom we have relationships.

On July 16, 2020, Blackbaud informed us that Blackbaud discovered that an unauthorized individual had gained access to Blackbaud’s systems between February 7 and May 20, 2020. Blackbaud further advised that the unauthorized individual may have acquired a backup of the database that manages the donor information. We immediately took steps to understand the extent of the incident and the data involved. 

The incident did not affect all of our patient information nor all of our donor files; rather it affected the Research Point donor/fundraising database at Blackbaud. Blackbaud informed us that the donor database that was accessed by the unauthorized individual consisted of some or all of the patient donors or prospective donors’ names, ages, genders, dates of birth, medical record numbers, date(s) of treatment, department(s) of service and treating physicians. 

Blackbaud advised that Social Security numbers and bank and credit card account numbers were not in the Main Line Health file and therefore were not involved in the incident. The incident did not involve any access to our medical systems or electronic health records. We have established a dedicated call center to answer any questions about this incident, at 1-888-920-0360 Monday through Friday, at 8:00 a.m. to 5:30 p.m. Central Time (excluding major U.S. holidays). We recommend that you review any statements you receive from health care providers. If services appear that you did not receive, you should promptly contact the provider.

We are continuing to explore all options going forward to avoid this from occurring in the future, including revisiting our relationship with Blackbaud, and reviewing the scope and protections for information stored with third-party vendors.

About Main Line Health

Founded in 1985, Main Line Health® is a not-for-profit health system serving the Philadelphia region and beyond. Main Line Health consists of five hospitals, six health centers and over 150 medical practice locations. The System has more than 14,000 employees and over 2,100 employed and independent physicians and advanced practice providers.

At its core are four of the region's most respected acute care hospitals — Lankenau Medical Center, Bryn Mawr Hospital, Paoli Hospital and Riddle Hospital — as well as one of the nation's premier facilities for rehabilitative medicine, Bryn Mawr Rehab Hospital. Main Line Health also includes Mirmont Treatment Center for drug and alcohol recovery; Main Line Health HomeCare & Hospice, providing skilled home healthcare, hospice and home infusion services; Main Line Health Centers, primary and specialty care, lab and radiology and other outpatient services located in Broomall, Collegeville, Concordville, Exton, King of Prussia and Newtown Square; and Lankenau Institute for Medical Research, a biomedical research organization.

Main Line Health's medical staff benefits from a collaborative relationship including independent physicians, community healthcare professionals and hospital-based experts from Main Line HealthCare, the employed multi-specialty physician network of Main Line Health.

Main Line Health collaborates with top experts to deliver exceptional specialty care. Through our affiliation with the Children's Hospital of Philadelphia, doctors and advanced practice providers care for pediatric patients at select Main Line Health locations, including the neonatal intensive care units at Main Line Health's four acute care hospitals, as well as Bryn Mawr Hospital's Inpatient Pediatric Unit and Emergency Department. Jefferson Health neurosurgeons and neurointerventionalists provide 24/7 specialized care, including neurointervention and lifesaving stroke care, and trauma surgeons provide critical care to our patients. Through our affiliation with Sheppard Pratt — a nonprofit provider of mental health services, substance use, developmental disability and other comprehensive behavioral health support — patients receive compassionate care in a welcoming environment.

For more information, visit mainlinehealth.org and connect with us on social media:

LinkedIn: www.linkedin.com/company/main-line-health
Facebook: www.facebook.com/mainlinehealth
X (formerly known as Twitter): www.twitter.com/mainlinehealth
Instagram: www.instagram.com/mainlinehealth