- Two American health companies have confirmed a cyber attack
- More than 300,000 victims had stolen sensitive data
- Rhysida claimed the responsibility of the attack and added the data to its flight site
The Ransomware Rhysida operators claim the responsibility of cyber attacks on two American health care organizations.
On its data leak site, they listed the Sunflower and Community Care Alliance medical group (CCA). The first is a health care provider in the Kansas City metropolitan region offering services such as primary care, urgent care, pediatrics, etc. The latter is a unified human service agency offering more than 50 programs.
Combined, it seems that more than 300,000 people have compromised their sensitive data as a result of these attacks.
No abuse yet
In a public announcement published on his website, Sunflower said that the attackers had burst into systems on December 15, but had not been spotted and ousted that a month later, around January 7.
Meanwhile, they stole the names of people, addresses, birth dates, social security numbers, driving license numbers, medical information and health insurance information. In a file to the Maine Prosecutor’s Office General, Sunflower said 220,968 people had been affected.
The CCA, on the other hand, was struck in July from last year and affirms that the disbelievers took the names, people’s addresses, birth dates, driving license numbers and SSNs, as well as diagnostics and conditions, laboratory results, drugs, patient identification numbers, health insurance information, supplier names and other data. Its deposit with the office of the Maine Attorney General places the number of people affected at 114,945.
As for Rhysida, Ransomware operators claim to have a value of 7.6 TB of Sunflower data, including a 3 TB SQL database, reports the register. Since the data is always listed on the site, this means either that the negotiations are underway, or that they have broken down.
In any case, Rhysida has not yet disclosed on the Dark web, and at the time of the press, there was no indication of abuse in nature. The two organizations said they were tightened on security as a result of the incident.
Via The register
