How would you feel if after been told you have cancer, your hospital admitted that they had not taken proper care of your personal information? Furthermore, if you only found out 5 months after the breach, what could you do to protect yourself? 

Hackers are first and foremost criminals these days, and not surprisingly they will go after the softest largest where they stand the least chance of being caught. It appears as though hospitals are now on their watch list, and in sense this is to be expected, given the wealth of personal and financial information held in the custody of medical establishments.