Fraud Management & Cybercrime , Incident & Breach Response , Ransomware

Ransomware Incident Reportedly Leads to Health Data Leak

Report: Clinic Operator Hack Led to Exposure of Workers' Records
Ransomware Incident Reportedly Leads to Health Data Leak

An apparent ransomware attack that targeted an operator of occupational clinics used by employees of transportation companies, government agencies and others has reportedly resulted in the leak of some workers' health data.

See Also: The Gorilla Guide to Modern Data Protection

Transportation industry news site FreightWaves reports that thousands of files from Chesapeake, Virginia-based Taylor Made Diagnostics were discovered on a darknet site following an apparent attack against the occupational health provider by the research report by security vendor Cybereason notes that Conti is a relatively new player in the ransomware field, first emerging in May 2020. Since then, the group claims to have waged over 150 attacks, Cybereason says.

“The Conti gang follows the growing trend of double extortion. They steal sensitive files and information from their victims, and later use it to extort the victims by threatening to publish the data unless the ransom is paid,” Cybereason researchers write.

Fraud Risks

A leak of Social Security numbers and scans of driver’s licenses “directly increases risks of the most damaging kinds of ID fraud - such as fraudulent new opening of credit and other financial accounts,” says Jim Van Dyke, CEO and founder of security firm Breach Clarity.

Any potential leak of data relating to law enforcement officers “could expose the individuals to risk or, potentially, enable others to exert influence over them,” says Brett Callow, a threat analyst at security vendor Emsisoft.

Last year, at least 560 healthcare facilities were affected by ransomware, with data stolen and posted online in at least 12 incidents, he notes.

About the Author

Marianne Kolbasuk McGee

Marianne Kolbasuk McGee

Executive Editor, HealthcareInfoSecurity, ISMG

McGee is executive editor of Information Security Media Group's media site. She has about 30 years of IT journalism experience, with a focus on healthcare information technology issues for more than 15 years. Before joining ISMG in 2012, she was a reporter at InformationWeek magazine and news site and played a lead role in the launch of InformationWeek's healthcare IT media site.

Around the Network

Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing, you agree to our use of cookies.