Ransomware gangs allegedly hit two major US healthcare firms, 300,000 patients have data stolen

LovabledanielsMarch 11, 202549 Views

Two US healthcare firms confirmed suffering a cyberattack
More than 300,000 victims have had sensitive data stolen
Rhysida claimed responsibility for the attack and added the data to its leak site

Ransomware operators Rhysida are claiming responsibility for cyberattacks on two US healthcare organizations.

On its data leak site, they listed Sunflower Medical Group, and Community Care Alliance (CCA). The former is a healthcare provider in the Kansas City metropolitan area offering services such as primary care, urgent care, pediatrics, and more. The latter is a unified human service agency offering more than 50 programs.

Combined, it seems that more than 300,000 people have had their sensitive data compromised as a result of these attacks.

No abuse yet

In a public announcement posted on its website, Sunflower said that the attackers broke into the systems on December 15, but were only spotted and ousted a month later, around January 7.

During that time, they stole people’s names, addresses, dates of birth, Social Security numbers, driver’s license numbers, medical information, and health insurance information. In a filing with the Maine Attorney General’s Office, Sunflower said 220,968 people were affected.

CCA, on the other hand, was struck in July last year, and claims that the miscreants took people’s names, addresses, dates of birth, driver’s license numbers, and SSNs, as well as diagnoses and conditions, lab results, medications, patient ID numbers, health insurance information, provider names, and other data. Its filing with the Maine Attorney General’s Office puts the number of affected people at 114,945.

As for Rhysida, the ransomware operators claim to have 7.6 TB worth of Sunflower’s data, including a 3TB SQL database, The Register reports. Since the data is still listed on the site, it means either that the negotiations are ongoing, or that they’ve broken down.

In any case, Rhysida is yet to leak everything on the dark web, and at press time, there was no indication of abuse in the wild. Both organizations said they tightened up on security following the incident.

Via The Register

Weekly update

Mercedes-AMG just teased its 1,000bhp Porsche Taycan Turbo GT rival – and it’ll need to dip deep into its performance past to beat it

OpenAI and Microsoft in talks to revise terms and renew partnership, FT reports

Scientists hail new ‘industrially viable technology’ that can squeeze hydrogen from seawater

Weekly Newsletter

Ransomware gangs allegedly hit two major US healthcare firms, 300,000 patients have data stolen

Leave a comment

Leave a Reply Cancel reply

Explore more

OpenAI and Microsoft in talks to revise terms and renew partnership, FT reports

Scientists hail new ‘industrially viable technology’ that can squeeze hydrogen from seawater

Ivory Coast opposition leader resigns but vows to still fight for victory | Elections News

Boosie Gets Emotional After Receiving Two Honorary Doctorates

Researchers unveil rapid self-healing electronic skin, paving the way for smarter, tougher wearables

Google Messages is getting another wave of updates – here are 7 you can expect to see soon

FTC and DOJ push for data protection in Google antitrust case

Can an online retailer successfully break into the high fashion market?

Get to Know Us

Let's keep in touch