PRESS STATEMENT FROM NEWYORK-PRESBYTERIAN HOSPITAL AND COLUMBIA UNIVERSITY MEDICAL CENTER

NEW YORK (September 27, 2010) —NewYork-Presbyterian Hospital and Columbia University Medical Center have learned that personal information, including names, clinical data, and, in ten cases, social security numbers, of approximately 6800 patients at NewYork-Presbyterian Hospital and Columbia University Medical Center was accessible on the Internet. The information was inadvertently placed on a server from which it has now been removed.

We deeply regret that this has occurred and we understand the concern that patients and their families may feel upon learning that their information may have been exposed. We have no evidence that this information has been improperly used. We are in the process of informing all affected patients and have set up a hotline for patients to call if they have questions.

NewYork-Presbyterian Hospital and Columbia University Medical Center have established an internal Task Force to build upon and strengthen our existing information systems and to implement enhancements to our data security as well as improve employee awareness in our on-going efforts to prevent such exposures of data. NewYork-Presbyterian Hospital and Columbia University Medical Center take this matter very seriously. We offer our apologies to our patients and families, and our assurance that we will take all necessary steps to safeguard their personal information.

Contact: NewYork – Presbyterian/Columbia Public Affairs (212) 305 5587