June 1, 2023

2.5 million individuals impacted following ransomware against Harvard Pilgrim Health Care

Last week, Harvard Pilgrim Health Care (HPHC), a Massachusetts-based non-profit health services provider released a data breach notice disclosing that a ransomware attack it suffered in April 2023 impacted 2,550,922 people, as well as the threat actors stealing their sensitive data from compromised systems. The notice revealed that the threat actors had maintained access to HPHC’s systems between March 28 […]
May 3, 2023

Cl0p ransomware attack impacts 783k Brightline patients

This week, Brightline, a pediatric mental health provider released a data notice warning patients that it suffered a data breach impacting 783,606 people following a cyberattack by the Cl0p ransomware gang. It is believed that the ransomware gang used a zero-day vulnerability (CVE-2023-0669) in its Fortra GoAnywhere MFT secure file-sharing platform to steal the data from 130 organisations including Brightline. […]
February 10, 2023

3.3 million patients were impacted by a data breach from a ransomware attack on Heritage Provider Network

On Friday 10th of February 2023, the Heritage Provider Network in California confirmed that multiple medical groups within the network suffered a ransomware attack which exposed the data of 3,300,638 patients. In the data breach notification on the U.S. Department of Health and Human Services breach portal, the Heritage Provider Network stated that the ransomware attack occurred on Thursday 1st […]
February 8, 2023

Pharmaceutical distributor AmerisourceBergen confirms subsidiary data breach

This week, the Pharmaceutical distributor AmerisourceBergen confirmed that they suffered a cyber attack against one of its subsidiaries following the Lorenz ransomware gang listing AmerisourceBergen with allegedly stolen data on its extortion site. AmerisourceBergen also confirmed that the threat actors compromised the IT system of the targeted subsidiary which could have given the ransomware group a chance to exfiltrate data […]
January 1, 2023

LockBit apologises with free decryptor after cyber attack against SickKids hospital

On Sunday 18th of December 2022, a teaching and research hospital in Toronto that focuses on providing healthcare to sick children, SickKids experienced a ransomware attack that impacted internal and corporate systems, hospital phone lines, and the website. The incident led to delays in receiving lab and imaging results and resulted in longer patient wait times. It was then revealed […]
December 5, 2022

André-Mignot teaching hospital heavily disrupted after ransomware attack

On Saturday 3rd December, the André-Mignot teaching hospital in the suburbs of Paris had to shut down its phone and computer systems after suffering a ransomware attack. It has been reported that the threat actors behind the attack have already demanded a ransom. At this time, the hospital only accepts walk-ins and consultations as it had to partially cancel operations. […]
November 30, 2022

Cyber attack disrupts Keralty’s healthcare operations

On Sunday 26th of November 2022, a Colombian healthcare provider, Keralty multinational healthcare organization suffered a RansomHouse ransomware attack that resulted in a disruption to the websites and operations of the company and its subsidiaries. They also confirmed that they have been working to provide continuity of care to their members by implementing the necessary contingency plans to maintain the […]
November 11, 2022

Black Basta ransomware gang believed to be responsible for a cyber attack against Sobeys

On Monday 7th of November 2022, Empire, the parent company of the Canadian food retail giant Sobeys revealed that Sobeys experienced a cyber attack which has impacted Sobeys’s IT systems. Sobeys has stated that it is working on resolving the issues affecting its IT systems to reduce store disruption.  “The Company’s grocery stores remain open to serve customers and are […]
October 26, 2022

Medibank confirm that a ransomware group accessed all its customers’ personal data

On Wednesday 12th of October 2022, one of Australia’s largest private health insurance providers, Medibank Private Limited identified unusual activity which was discovered to be a precursor to a ransomware attack. In response, Medibank immediately took down parts of its IT systems to contain the threat and therefore disrupted its online services. “Our ongoing investigation has found the unusual activity […]