Ransomware gangs allegedly hit two major US healthcare firms, 300,000 patients have data stolen

News
By
published

Sunflower Medical Group and Community Care Alliance confirm suffering cyberattack

security
(Image credit: Shutterstock / binarydesign)
  • Two US healthcare firms confirmed suffering a cyberattack
  • More than 300,000 victims have had sensitive data stolen
  • Rhysida claimed responsibility for the attack and added the data to its leak site

Ransomware operators Rhysida are claiming responsibility for cyberattacks on two US healthcare organizations.

On its data leak site, they listed Sunflower Medical Group, and Community Care Alliance (CCA). The former is a healthcare provider in the Kansas City metropolitan area offering services such as primary care, urgent care, pediatrics, and more. The latter is a unified human service agency offering more than 50 programs.

Combined, it seems that more than 300,000 people have had their sensitive data compromised as a result of these attacks.

No abuse yet

In a public announcement posted on its website, Sunflower said that the attackers broke into the systems on December 15, but were only spotted and ousted a month later, around January 7.

During that time, they stole people’s names, addresses, dates of birth, Social Security numbers, driver’s license numbers, medical information, and health insurance information. In a filing with the Maine Attorney General’s Office, Sunflower said 220,968 people were affected.

CCA, on the other hand, was struck in July last year, and claims that the miscreants took people’s names, addresses, dates of birth, driver's license numbers, and SSNs, as well as diagnoses and conditions, lab results, medications, patient ID numbers, health insurance information, provider names, and other data. Its filing with the Maine Attorney General’s Office puts the number of affected people at 114,945.

As for Rhysida, the ransomware operators claim to have 7.6 TB worth of Sunflower’s data, including a 3TB SQL database, The Register reports. Since the data is still listed on the site, it means either that the negotiations are ongoing, or that they’ve broken down.

In any case, Rhysida is yet to leak everything on the dark web, and at press time, there was no indication of abuse in the wild. Both organizations said they tightened up on security following the incident.

Via The Register

You might also like

Sead Fadilpašić

Sead is a seasoned freelance journalist based in Sarajevo, Bosnia and Herzegovina. He writes about IT (cloud, IoT, 5G, VPN) and cybersecurity (ransomware, data breaches, laws and regulations). In his career, spanning more than a decade, he’s written for numerous media outlets, including Al Jazeera Balkans. He’s also held several modules on content writing for Represent Communications.

You must confirm your public display name before commenting

Please logout and then login again, you will then be prompted to enter your display name.

Read more
ID theft
Over a million patients potentially hit after another US healthcare provider hit by cyberattack
A laptop with a red screen with a white skull on it with the message: "RANSOMWARE. All your files are encrypted."
UK private health services firm told to pay up $2m for ransomware hit
ransomware avast
The biggest addiction treatment provider in the US says it was hit by data breach
An abstract image of padlocks overlaying a digital background.
US healthcare giant Ascension says ransomware attack affected nearly six million customers
Doctor working on laptop
Another major US hospital hacked, data on 1.4 million patients leaked
Lock on Laptop Screen
United Healthcare data breach may have affected 190 million Americans
Latest in Security
Ai tech, businessman show virtual graphic Global Internet connect Chatgpt Chat with AI, Artificial Intelligence.
Nation-state threats are targeting UK AI research
Application Security Testing Concept with Digital Magnifying Glass Scanning Applications to Detect Vulnerabilities - AST - Process of Making Apps Resistant to Security Threats - 3D Illustration
Google bug bounty payments hit nearly $12 million in 2024
Scam alert
A new SMS energy scam is using Elon Musk’s face to steal your money
Representational image of a cybercriminal
Allstate sued for exposing personal customer information in plaintext
Representational image of a cybercriminal
Criminals are spreading malware disguised as DeepSeek AI
security
Ransomware gangs allegedly hit two major US healthcare firms, 300,000 patients have data stolen
Latest in News
A close up of Captain America with Thor and Hulk in the background during the Assemble scene in Avengers: Endgame
'We will draw inspiration': Joe and Anthony Russo reveal which of Marvel's Secret Wars comic book series have influenced Avengers 5 and 6's plot
Ai tech, businessman show virtual graphic Global Internet connect Chatgpt Chat with AI, Artificial Intelligence.
Nation-state threats are targeting UK AI research
An AMD Radeon RX 9070 XT made by Sapphire on a table with its retail packaging
Want to buy an RX 9070 or 9070 XT but fed up of the GPUs being out of stock? AMD promises that “more supply is coming ASAP”
Cece Carroway (Sara Silva), Caroline Merteuil (Sarah Catherine Hook), and Lucien Belmont (Zac Burgess) in Cruel Intentions.
Cruel Intentions has been canceled after one season on Prime Video, but I'm not surprised by its cruel fate
iOS 18 Control Center
iOS 19: the 3 biggest rumors so far, and what I want to see
Doom: The Dark Ages
Doom: The Dark Ages' director confirms DLC is in the works and says the game won't end the way 2016's Doom begins: 'If we took it all the way to that point, then that would mean that we couldn't tell any more medieval stories'
More about security
Representational image of a cybercriminal

Allstate sued for exposing personal customer information in plaintext
Scam alert

A new SMS energy scam is using Elon Musk’s face to steal your money
Amazon Fire 7 tablet

Need a super-cheap tablet? The Amazon Fire 7 has dropped to $44.99
See more latest
Most Popular
Cece Carroway (Sara Silva), Caroline Merteuil (Sarah Catherine Hook), and Lucien Belmont (Zac Burgess) in Cruel Intentions.
Cruel Intentions has been canceled after one season on Prime Video, but I'm not surprised by its cruel fate
A close up of Captain America with Thor and Hulk in the background during the Assemble scene in Avengers: Endgame
'We will draw inspiration': Joe and Anthony Russo reveal which of Marvel's Secret Wars comic book series have influenced Avengers 5 and 6's plot
Representational image of a cybercriminal
Allstate sued for exposing personal customer information in plaintext
NYT Strands homescreen on a mobile phone screen, on a light blue background
NYT Strands hints and answers for Wednesday, March 12 (game #374)
Quordle on a smartphone held in a hand
Quordle hints and answers for Wednesday, March 12 (game #1143)
NYT Connections homescreen on a phone, on a purple background
NYT Connections hints and answers for Wednesday, March 12 (game #640)
An AMD Radeon RX 9070 XT made by Sapphire on a table with its retail packaging
Want to buy an RX 9070 or 9070 XT but fed up of the GPUs being out of stock? AMD promises that “more supply is coming ASAP”
Cowabunga, dude!
Teenage Mutant Ninja Turtles: Shredder’s Revenge, a nostalgic beat-em-up with beautiful pixel graphics, is finally coming to mobile next month
Empirical Health biomarkers
This new health protocol combines 40 smartwatch biomarkers and blood tests to give you a health score
LG C5 OLED T V with forest road and car on screen
LG reveals US pricing for the LG G5 and LG C5 OLED TVs, and it's great news for OLED fans