November 19, 2024 at 07:34PM
Equinox, a New York health services organization, has informed over 21,000 clients and staff of a data breach involving their personal information. The LockBit ransomware gang is suspected of the incident, which occurred in April. Equinox has since secured its IT environment and is investigating the breach.
### Meeting Notes Takeaways:
1. **Incident Overview**:
– Equinox, a New York State health and human services organization, experienced a data security incident approximately seven months ago, affecting over 21,000 clients and staff.
2. **Data Compromised**:
– Cybercriminals accessed and stole sensitive health, financial, and personal information, including:
– Names, addresses, and dates of birth
– Social Security numbers
– Government identification numbers (driver’s license, passport)
– Financial account information
– Health insurance information
– Medical treatment/diagnosis details
– Medication-related information
3. **Incident Timeline**:
– Incident occurred on April 29.
– Equinox secured its IT systems and began an investigation immediately after discovering the breach.
– By September 16, they had reviewed potentially compromised files.
4. **Attribution**:
– The LockBit ransomware gang, previously thought to be shut down, is implicated in the incident. LockBit 3.0 claimed responsibility, stating they stole 49GB of data.
– Updated listing by LockBit on August 11 indicated the group leaked 31.8GB of files after the organization failed to respond by the set deadline.
5. **Public Notification**:
– Equinox began notifying affected clients and employees through letters, highlighting the personal data at risk.
6. **Potential Consequences**:
– Anticipation of potential lawsuits due to the involvement of protected health information.
– The incident showcases the ongoing challenges in combating ransomware threats, despite law enforcement efforts and previous shutdowns of criminal infrastructure.
7. **Organization Services**:
– Equinox provides a range of services including mental health and addiction support, domestic violence assistance, and community services for various demographics within New York’s capital region.
8. **Communication & Response**:
– Equinox has not publicly responded to inquiries regarding the incident or provided additional details on the nature of the ransomware infection.
9. **Current Status of Ransomware**:
– LockBit 3.0 remains a highly active ransomware threat in 2023, continuing to target organizations despite prior disruptions.
These points summarize the critical components of the meeting notes regarding the Equinox data breach incident.