In a press release Friday, Norton Healthcare of Kentucky confirmed that 2.5 million patients, employees, and dependents were impacted by a ransomware attack that took place 7 months ago.
Between May 7th and 9th, the hackers gained access to a wide range of sensitive information, including:
- Names
- Contact information
- SSNs
- DOBs
- Health information
- Insurance information
- Medical identification numbers
- Financial account numbers
- Driver’s licenses
- Government ID numbers
- Digital signatures
Although Norton didn’t associate a gang with the attack, in an entry added to their dark web leak site in May, ALPHV (BlackCat) claimed they allegedly stole 4.7TB of data from the healthcare system’s compromised network and leaked dozens of files as proof.
Emily Phelps, Director, Cyware had this to say:
“The scale and sensitivity of the data involved in this attack underscores the importance of proactive and real-time intelligence sharing to preempt such threats. Joining Health-ISAC is a great place to start for trusted threat intelligence sharing and security collaboration. Arming healthcare organizations with not only the right intel but also the right automation helps ensure security teams can take quick action to mitigate risk.”
This is not good for Norton Healthcare. Secondary attacks using this data are sure to come, and that won’t end well for anyone. Not Norton Healthcare, and not the 2.5 million who are affected by this.
Related
This entry was posted on December 11, 2023 at 2:49 pm and is filed under Commentary with tags Hacked. You can follow any responses to this entry through the RSS 2.0 feed.
You can leave a response, or trackback from your own site.
Norton Healthcare Pwned In Ransomware Attack
In a press release Friday, Norton Healthcare of Kentucky confirmed that 2.5 million patients, employees, and dependents were impacted by a ransomware attack that took place 7 months ago.
Between May 7th and 9th, the hackers gained access to a wide range of sensitive information, including:
Although Norton didn’t associate a gang with the attack, in an entry added to their dark web leak site in May, ALPHV (BlackCat) claimed they allegedly stole 4.7TB of data from the healthcare system’s compromised network and leaked dozens of files as proof.
Emily Phelps, Director, Cyware had this to say:
“The scale and sensitivity of the data involved in this attack underscores the importance of proactive and real-time intelligence sharing to preempt such threats. Joining Health-ISAC is a great place to start for trusted threat intelligence sharing and security collaboration. Arming healthcare organizations with not only the right intel but also the right automation helps ensure security teams can take quick action to mitigate risk.”
This is not good for Norton Healthcare. Secondary attacks using this data are sure to come, and that won’t end well for anyone. Not Norton Healthcare, and not the 2.5 million who are affected by this.
Share this:
Like this:
Related
This entry was posted on December 11, 2023 at 2:49 pm and is filed under Commentary with tags Hacked. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.