Community Health says cyberattack snares information from more than 4 million patients

Hospital operator Community Health Systems says a cyberattack took information on more than 4 million patients from its computer network earlier this year.

The Franklin, Tennessee, company says no medical or credit card records were taken in the attack, which may have happened in April and June. But Community says the attack did bypass its security systems to take patient names, addresses, birthdates, phone and Social Security numbers.

The information came from patients who were referred to or received care from doctors tied to the company over the past five years.

Community Health Systems Inc. says it is notifying patients affected by the attack and offering them identity theft protection services.

The company owns, leases or operates 206 hospitals in 29 states.