December 11, 2023 at 03:07PM
Norton Healthcare disclosed a ransomware attack resulting in the potential theft of 2.5 million individuals’ sensitive data, including personal and financial information and health records. The not-for-profit healthcare system reported the incident to the FBI and engaged in investigations but did not make any ransom payment. This is amid a surge in ransomware attacks on US healthcare systems.
Key takeaways from the meeting notes:
– Norton Healthcare experienced a ransomware attack leading to the potential theft of sensitive data of 2.5 million individuals.
– The stolen data includes names, contact information, Social Security Numbers, dates of birth, driver’s license and government ID numbers, financial account information, digital signatures, health information, insurance information, and medical ID numbers.
– Norton Healthcare discovered the security incident on May 9, 2023, and immediately initiated an investigation with the assistance of the FBI, legal counsel, and a forensic security provider.
– They did not make any ransom payment to the AlphV/BlackCat ransomware affiliates responsible for the theft.
– The US healthcare industry is facing a significant increase in ransomware attacks, posing a threat to data security and patient care.
This information highlights the severity of the ransomware attack on Norton Healthcare and the broader challenges faced by the US healthcare sector in dealing with cybersecurity threats.