Ransomware cyber

CENTER FOR ORTHOPAEDIC SPECIALISTS

May 11, 2023 1 min read
CENTER FOR ORTHOPAEDIC SPECIALISTS

The Center for Orthopaedic Specialists (COS) has notified 85,000 current and former patients of a ransomware attack on their unnamed IT vendor.

Malicious software was used to gain access to and encrypt patient data in our system in the hopes of getting COS to pay money to restore access to the patient data.

The patient data that was encrypted by the unauthorized party could have included a patient’s name, date of birth, details about their medical records, and Social Security number.

No patient information was downloaded or removed by the unauthorized party.

Source: https://www.databreaches.net/center-for-orthopaedic-specialists-notifies-85000-patients-of-ransomware-attack/

TPRM report: https://www.rankiteo.com/company/center-for-orthopaedic-specialists

"id": "cen21311622",
"linkid": "center-for-orthopaedic-specialists",
"type": "Ransomware",
"date": "6/2017",
"severity": "100",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"
{'affected_entities': [{'customers_affected': 85000,
                        'industry': 'Healthcare',
                        'name': 'Center for Orthopaedic Specialists',
                        'type': 'Healthcare'}],
 'attack_vector': 'Malicious software',
 'data_breach': {'data_encryption': 'Yes',
                 'data_exfiltration': 'No',
                 'number_of_records_exposed': 85000,
                 'personally_identifiable_information': 'Yes',
                 'sensitivity_of_data': 'High',
                 'type_of_data_compromised': ["Patient's name",
                                              'Date of birth',
                                              'Medical records',
                                              'Social Security number']},
 'description': 'The Center for Orthopaedic Specialists (COS) has notified '
                '85,000 current and former patients of a ransomware attack on '
                'their unnamed IT vendor. Malicious software was used to gain '
                'access to and encrypt patient data in the hopes of getting '
                'COS to pay money to restore access to the patient data. The '
                'patient data that was encrypted by the unauthorized party '
                'could have included a patient’s name, date of birth, details '
                'about their medical records, and Social Security number. No '
                'patient information was downloaded or removed by the '
                'unauthorized party.',
 'impact': {'data_compromised': ["Patient's name",
                                 'Date of birth',
                                 'Medical records',
                                 'Social Security number']},
 'motivation': 'Financial gain',
 'ransomware': {'data_encryption': 'Yes', 'data_exfiltration': 'No'},
 'title': 'Ransomware Attack on Center for Orthopaedic Specialists',
 'type': 'Ransomware'}
Published by
Jeremy C
Jeremy C
You might also like
Great! Next, complete checkout for full access to Rankiteo Blog.
Welcome back! You've successfully signed in.
You've successfully subscribed to Rankiteo Blog.
Success! Your account is fully activated, you now have access to all content.
Success! Your billing info has been updated.
Your billing was not updated.