2020-09-29 UNIVERSAL HEALTH SERVICES INC Cybersecurity Incident

Page last updated on April 11, 2024

UNIVERSAL HEALTH SERVICES INC initially disclosed a cybersecurity incident in an SEC 8-K filing on 2020-09-29 07:01:14 EDT.

Incident Details

Material: Unknown
Is Breach: Unknown
Records Compromised: Unknown
Data Types Impacted: No Data Types Tracked (yet)

Compromised Date:
Detected Date:
Disclosure Date: 2020-09-29
Contained Date:
Recovered Date:

Attack Goal: Unknown

Costs: No Costs Tracked (yet)


8-K filed on 2020-09-29

UNIVERSAL HEALTH SERVICES INC filed an 8-K at 2020-09-29 07:01:14 EDT
Accession Number: 0001564590-20-044863

Item 8.01 Other Events.

On September 29, 2020, Universal Health Services, Inc. (the “Company”) issued a press release announcing that it had experienced an information technology security incident in the early morning hours of September 27, 2020. As a result, the Company suspended user access to its information technology applications related to operations located in the United States.

The Company has implemented extensive information technology security protocols and is working diligently with its security partners to restore its information technology operations as quickly as possible.

In the meantime, while this matter may result in temporary disruptions to certain aspects of the Company’s clinical and financial operations, the Company’s acute care and behavioral health facilities are utilizing their established back-up processes including offline documentation methods. Patient care continues to be delivered safely and effectively.

At this time, we have no evidence that patient or employee data has been accessed, copied or misused.

A copy of the press release related to this incident is attached hereto as Exhibit 99.1.

Exhibit No. 99.1

Universal Health Services, Inc., press release, dated September 29, 2020.

Company Information

SIC DescriptionServices-General Medical & Surgical Hospitals, NEC
TickerUHS - NYSE
CategoryLarge accelerated filer
Fiscal Year EndDecember 30