July 29, 2018
AK-based billing firm, Golden Heart Administrative Experts, a Fairbanks is warning 44,600 people that some of their PHI have potentially been obtained by illegal people because of the latest ransomware attack.
The ransomware was positioned on a server stowing the PHI of patients. A press release released by the firm, which is a business associate of many healthcare suppliers in Alaska, said that “all client patient information should be supposed to be undermined.”
Local and federal law enforcement organizations have been informed of hacking occurrence and efforts are continuing to salvage files.
The Golden Heart Administrative Experts ransomware attack is the largest data breach suffered by a healthcare group in July, and the second main data breach to be informed by an Alaska-based healthcare group during the same month.
The Alaska Division of Health and Social Services declared, earlier in July, that it had been hit by a data breach because of a malware infection. The Zeus/Zbot Trojan – an information thief – had been positioned on their servers which possibly let the hackers to gain access to the PHI of ‘over 500’ clients.
Latest reports show ransomware attacks are becoming less usual, with several cybercriminal gangs altering procedures to cryptocurrency mining; nevertheless, there doesn’t appear to be any decline in the number of ransomware attacks on healthcare units.
Lately, LabCorp, the national network of clinical checking laboratories, experienced a SamSam ransomware attack. The attack was found within 50 minutes and systems were deactivated to halt widespread file encryption. The ransomware was added to the servers after a brute force remote desktop protocol (RDP) attack. It’s not presently clear how many individuals have been affected by the occurrence, even though some reports suggest that millions of patients’ PHI might have been impacted.
On Monday, July 9, Cass Regional Medical Center in Harrisonville, MO, experienced a ransomware attack that led to its communications system and electronic medical record system inoperative. The medical center redirected ambulances for stroke and trauma sufferers to alternative healthcare services in order to deal with the situation. As with the LabCorp hacking occurrence, the ransomware was put on the server after a brute force RDP campaign. The electronic medical record systems were preserved offline for 10 days because of the attack.