Advanced Urgent Care of the Florida Keys had been attacked, and patient data was dumped.
The threat actor, formerly known as m1x, branded the medical organization Malicious Defaulters since they wouldn't pay to stop data leaking after the data dump was posted on a Russian-language site notorious for data dumps.
More than 14,000 patients' personal data were included in the files, which were openly available on a well-known file-sharing website.
For some of the patients, there were numerous scans of patient records.
These were scans of reports that also had some handwritten notes and results, along with the patient's name, address, and other details, as well as the reason for the test or visit and other relevant information.
MMore than 60 days after the leak originally surfaced, this site sent Advanced Urgent Care of Florida Keys one last question, asking if they had ever informed HHS of the breach and whether they had ever informed patients.
"id": "ADV21214623",
"linkid": "advanced-urgent-care-24-hr",
"type": "Data Leak",
"date": "11/2020",
"severity": "85",
"impact": "3",
"explanation": "Attack with significant impact with internal employee data leaks"