Computer code and text displayed on computer screens.

An Oregon-based senior living and skilled nursing provider has had its computer network breached, affecting the personal information of some of its employees as well as some employees of affiliated entities.

June 17, Wilsonville, OR-based Avamere Health Services began sending data breach notifications to affected employees, saying that the company had determined that “intermittent unauthorized access” to its network occurred between Jan. 19 and March 17. 

“Upon learning of the issue, we commenced a prompt and thorough investigation in consultation with outside cybersecurity professionals, which determined that an unauthorized party potentially removed a limited number of files and folders from our system,” an Avamere spokesman told McKnight’s Senior Living. “Out of an abundance of caution, Avamere notified certain employees of Avamere and employees of affiliated entities whose information was included in the impacted files and folders.”

Those employees, the spokesman said, were offered complimentary credit monitoring services and were informed of best practices to protect their information. 

The Avamere Family of Companies employs more than 8,100 people and provides independent living, assisted living, memory care, skilled nursing, therapy and rehabilitation, and healthcare management services at 300 locations in 20 states.

The company’s investigation into the incident, as well as its response, remains ongoing. 

“The security and privacy of personal information is of the utmost importance to Avamere,” the spokesman said. “Since the incident, we have worked with our information technology department to implement additional security measures in an effort to prevent a similar event from occurring in the future.”

A recent Verizon Business 2022 Data Breach Investigations Report found that cyber threats are on the rise. Recent ransomware attacks increased 13% year over year, a rate that is higher than the past five years combined. The report also found that external actors are four times more likely to cause breaches in an organization than are internal actors.