Skip to main content 
Morgan & Morgan’s leading data privacy attorneys are currently investigating the St. Louis-based healthcare system, Ascension, regarding a potential cybersecurity incident—also referred to as a "data event" or "data security incident." This incident may have exposed sensitive personally identifiable information of patients to an unauthorized entity.
Our investigation focuses on several key issues:
- The origins of how Ascension acquired the sensitive information.
- The justification for Ascension's possession of this sensitive information.
- The reasons behind storing this sensitive information in an Internet-accessible environment, if applicable.
- The encryption status of the sensitive information.
- The deletion practices concerning sensitive information no longer needed.
- The adequacy of security measures implemented to protect this sensitive information.
- The measures Ascension has taken to provide adequate protection and compensation for affected individuals.
Ascension, one of the nation’s largest health systems, includes over 35,000 affiliated providers and 140 hospitals across 19 states. Around May 8, 2024, Ascension reported unusual activity on its computer systems, which might have led to unauthorized access to and/or acquisition of personal information.
If you received a data breach notification and would like to discuss with an attorney, we are available at 888.696.0024 or take our free QUIZ to see if you have a case.
We place significant trust in the companies with whom we share our personal information, making any breach of this trust especially egregious. If you suspect your information was compromised in the Ascension data incident, Morgan & Morgan is here to support you.