Fraud Management & Cybercrime , Incident & Breach Response , Managed Detection & Response (MDR)
Ransomware Incident Reportedly Leads to Health Data Leak
Report: Clinic Operator Hack Led to Exposure of Workers' RecordsAn apparent ransomware attack that targeted an operator of occupational clinics used by employees of transportation companies, government agencies and others has reportedly resulted in the leak of some workers' health data.
See Also: Protect Your Amazon S3 Data: Why Versioning, Replication, and AWS Backup are Not Enough
Transportation industry news site FreightWaves reports that thousands of files from Chesapeake, Virginia-based Taylor Made Diagnostics were discovered on a darknet site following an apparent attack against the occupational health provider by the research report by security vendor Cybereason notes that Conti is a relatively new player in the ransomware field, first emerging in May 2020. Since then, the group claims to have waged over 150 attacks, Cybereason says.
“The Conti gang follows the growing trend of double extortion. They steal sensitive files and information from their victims, and later use it to extort the victims by threatening to publish the data unless the ransom is paid,” Cybereason researchers write.
Fraud Risks
A leak of Social Security numbers and scans of driver’s licenses “directly increases risks of the most damaging kinds of ID fraud - such as fraudulent new opening of credit and other financial accounts,” says Jim Van Dyke, CEO and founder of security firm Breach Clarity.
Any potential leak of data relating to law enforcement officers “could expose the individuals to risk or, potentially, enable others to exert influence over them,” says Brett Callow, a threat analyst at security vendor Emsisoft.
Last year, at least 560 healthcare facilities were affected by ransomware, with data stolen and posted online in at least 12 incidents, he notes.