December 20, 2023 at 11:22AM
ESO Solutions, a healthcare software provider, experienced a ransomware attack compromising data of 2.7 million patients, including sensitive information such as SSN and medical records. The company notified affected customers, offering 12 months of identity monitoring. Several healthcare providers were confirmed impacted. The attack highlights the growing threat to patient data security.
Based on the meeting notes, the key takeaways are as follows:
– ESO Solutions experienced a ransomware attack resulting in the unauthorized access and exfiltration of data belonging to 2.7 million patients on September 28. The attackers then encrypted a number of company systems.
– The breached data includes sensitive personal information such as full names, dates of birth, phone numbers, patient account/medical record numbers, injury type and date, diagnosis information, treatment type and date, procedure information, and Social Security Numbers (SSNs). The specific types of exposed data vary depending on individual patient details and care services received.
– ESO Solutions has informed the FBI and state authorities about the incident. All impacted customers and some affected hospitals have been notified, and impacted patients have been assured that there is no evidence of misuse of their information.
– To mitigate the risk of the data breach, ESO is offering 12 months of identity monitoring service coverage through Kroll to all affected patients.
– The healthcare providers confirmed as impacted by the ransomware attack at ESO include several major institutions such as Mississippi Baptist Medical Center, Community Health Systems Merit Health Biloxi, and Providence St Joseph Health (Providence Kodiak Island Medical Center).
– As of the latest information, no ransomware group has claimed responsibility for the attack.
– This breach is part of a concerning trend of supply-chain breaches in the healthcare space, posing threats to patient data safety and the stability of medical institutions.
These takeaways accurately summarize the details from the meeting notes.