- The Hospital’s sisters’ health system files a new relationship with the Maine Attorney General
- He confirmed more than 800,000 affected in a violation of August 2023
- Compromise people obtain a year of free identity flight monitoring
Hospital Sisters Health System (HSHS), a non -profit Catholic health system, has undergone a and a half cyber attack, which led to the theft of patients sensitive to patients.
The cabinet has now submitted a report to the Maine General Maine office, in which he detailed the attack, noting that she discovered an “unauthorized third party”, temporary access to his network, on August 27, 2023.
“By learning the situation, we immediately took measures to contain and resolve the incident and launch an internal investigation,” said HSHS in the file.
Steal sensitive data
The investigation determined that the anonymous attackers lingered on the network of HSHS between August 16 and 27 and during this period, sensitive information exfiltrated exactly 882,782 people.
“We have since examined these files and informed individuals whose information was found in the files on a roller basis as our examination continued,” said the organization.
Although the type of stolen information varied from one person to another, in general, it included comprehensive names, postal addresses, birth dates, medical file numbers, limited processing information, information On health insurance, social security numbers (SSN) and driving license numbers.
This is more than enough to engage in a highly personalized phishing, identity theft or even fraud by wire. However, HSHS says that at that time, he has “no reason to believe” that the data was used badly.
Information on health care is highly sought after on the black market because it contains sensitive personal, financial and medical data that can be used for various types of fraud and cybercrime. Unlike credit cards, which can be quickly canceled, stolen medical records offer long -term value because they include social security numbers, insurance details and medical history that can be used for Identity theft, fraudulent invoicing, prescription fraud and even blackmail. In addition, the price of resale of medical records is much higher than financial data because of their exhaustiveness and their detection difficulty.
That said, even if there is no evidence of improper use, “by abundance of prudence”, HSHS offered individuals affected a year of credit and surveillance of identity theft via Equifax.
Via Bleeping Compompute
