1. Forum
  2. FidoNET
  3. CONSPRCY

  • Ransomware gangs allegedl

    From Mike Powell@1:2320/105 to All on Wednesday, March 12, 2025 08:38:00
    Ransomware gangs allegedly hit two major US healthcare firms, 300,000
    patients have data stolen

    Date:
    Tue, 11 Mar 2025 16:03:00 +0000

    Description:
    Sunflower Medical Group and Community Care Alliance confirmed suffering a cyberattack as Rhysida claims responsibility.

    FULL STORY ======================================================================
    - Two US healthcare firms confirmed suffering a cyberattack
    - More than 300,000 victims have had sensitive data stolen
    - Rhysida claimed responsibility for the attack and added the data to its
    leak site

    Ransomware operators Rhysida are claiming responsibility for cyberattacks on two US healthcare organizations.

    On its data leak site, they listed Sunflower Medical Group, and Community
    Care Alliance (CCA). The former is a healthcare provider in the Kansas City metropolitan area offering services such as primary care, urgent care, pediatrics, and more. The latter is a unified human service agency offering more than 50 programs.

    Combined, it seems that more than 300,000 people have had their sensitive
    data compromised as a result of these attacks.

    No abuse yet

    In a public announcement posted on its website, Sunflower said that the attackers broke into the systems on December 15, but were only spotted and ousted a month later, around January 7.

    During that time, they stole peoples names, addresses, dates of birth, Social Security numbers, drivers license numbers, medical information, and health insurance information. In a filing with the Maine Attorney Generals Office, Sunflower said 220,968 people were affected.

    CCA, on the other hand, was struck in July last year, and claims that the miscreants took peoples names, addresses, dates of birth, driver's license numbers, and SSNs, as well as diagnoses and conditions, lab results, medications, patient ID numbers, health insurance information, provider
    names, and other data. Its filing with the Maine Attorney Generals Office
    puts the number of affected people at 114,945.

    As for Rhysida, the ransomware operators claim to have 7.6 TB worth of Sunflowers data, including a 3TB SQL database, The Register reports. Since
    the data is still listed on the site, it means either that the negotiations
    are ongoing, or that theyve broken down.

    In any case, Rhysida is yet to leak everything on the dark web, and at press time, there was no indication of abuse in the wild. Both organizations said they tightened up on security following the incident.

    Via The Register

    ======================================================================
    Link to news story: https://www.techradar.com/pro/security/ransomware-gangs-allegedly-hit-two-majo r-us-healthcare-firms-300-000-patients-have-data-stolen

    $$
    --- SBBSecho 3.20-Linux
    * Origin: capitolcityonline.net * Telnet/SSH:2022/HTTP (1:2320/105)