American Baptist Homes of the Midwest (ABHM) has reported a security breach involving the use of ransomware on its network.
The attack was detected promptly, but only after the encryption routine had commenced.
The attack was stopped and affected accounts were secured, but not in time to prevent widespread file encryption.
The files encrypted by the ransomware contained the records of many ABHM clients, but the clinical and billing systems were not affected, only general file systems and email accounts.
The attack is believed to have been conducted with the sole purpose of extorting money from ABHM.
The types of information stored on the compromised servers and systems included individuals’ names and addresses in combination with social Security numbers, financial information, diagnoses, lab test results, medications and some other medical information.
Source: https://www.hipaajournal.com/ransomware-attack-reported-by-american-baptist-homes-of-the-midwest/
TPRM report: https://scoringcyber.rankiteo.com/company/americanbaptisthomesofthemidwest
"id": "ame1320323",
"linkid": "americanbaptisthomesofthemidwest",
"type": "Ransomware",
"date": "05/2019",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"{'affected_entities': [{'industry': 'Healthcare',
'name': 'American Baptist Homes of the Midwest',
'type': 'Healthcare'}],
'data_breach': {'data_encryption': 'Encrypted',
'personally_identifiable_information': True,
'sensitivity_of_data': 'High',
'type_of_data_compromised': ['Personal data',
'Financial data',
'Medical data']},
'description': 'American Baptist Homes of the Midwest (ABHM) has reported a '
'security breach involving the use of ransomware on its '
'network. The attack was detected promptly, but only after the '
'encryption routine had commenced. The attack was stopped and '
'affected accounts were secured, but not in time to prevent '
'widespread file encryption. The files encrypted by the '
'ransomware contained the records of many ABHM clients, but '
'the clinical and billing systems were not affected, only '
'general file systems and email accounts. The attack is '
'believed to have been conducted with the sole purpose of '
'extorting money from ABHM. The types of information stored on '
'the compromised servers and systems included individuals’ '
'names and addresses in combination with social Security '
'numbers, financial information, diagnoses, lab test results, '
'medications and some other medical information.',
'impact': {'data_compromised': ['Individuals’ names',
'Addresses',
'Social Security numbers',
'Financial information',
'Diagnoses',
'Lab test results',
'Medications',
'Other medical information'],
'systems_affected': ['General file systems', 'Email accounts']},
'motivation': 'Extortion',
'ransomware': {'data_encryption': True},
'title': 'Ransomware Attack on American Baptist Homes of the Midwest',
'type': 'Ransomware'}