On Friday 12th of November 2021, Medatixx, a German medical software vendor who provides medical software to over 21,000 health institutions, announced they had experienced a ransomware attack which has led to their operations being shut down. Shortly after the attack, they urged their customers and users to change their application passwords and passwords to all their workstations and servers over concerns that the threat actors might have gain access to Medatixx user’s credentials.
“In the middle of last week, we were the target of a cyberattack in which important parts of our internal IT system were encrypted. As a result, our accessibility as well as the entire company operation are currently severely impaired.” – Medatixx statement
The software products that might be at risk are following:
Medatixx is still recovering, as currently it has only managed to restore e-mail and central telephone systems. Although regional sales partners and all customer support lines are still available so therefore customers and users can contact Medatixx if they have any concerns. At this current time, there is no estimate of when Medatixx will be able to return to normal operations.
“It is not known at this point whether or not, and to what extent any data was stolen. It can therefore not be ruled out that the data stored by us has been stolen,” – Mediatixx statement.
Medatixx has stated that there is no evidence yet that any data of customers or users has been affected but they have informed Germany’s data protection authority has about the incident and will issue an update after the investigations are concluded.
© 2021 CyberEnsō – Nihon Cyber Defence Co., Ltd. All Rights Reserved.