Medical Healthcare Solutions

Medical Healthcare Solutions, Inc. fell prey to the Conti ransomware group in November 2021.

The attackers gained access to its networks and accessed the protected health information of its customers and removed several files from its network.

The compromised information included name, address, date of birth, sex, phone number, email address, Social Security number, driver’s license/state ID number, financial account number, routing number, payment card number, card CVV/expiration, and other personal information of its customers.

MHS immediately shut down its data system, conducted an extensive investigation, and notified law enforcement agencies and the impacted customers.

Source: https://www.databreaches.net/hit-by-conti-ransomware-in-october-medical-healthcare-solutions-now-notifying-clients-patients/

TPRM report: https://www.rankiteo.com/company/medical-healthcare-solutions

"id": "med13623422",
"linkid": "medical-healthcare-solutions",
"type": "Ransomware",
"date": "11/2021",
"severity": "90",
"impact": "5",
"explanation": "Attack threatening the organization's existence"

{'affected_entities': [{'industry': 'Healthcare',
                        'name': 'Medical Healthcare Solutions, Inc.',
                        'type': 'Healthcare'}],
 'customer_advisories': True,
 'data_breach': {'data_exfiltration': True,
                 'personally_identifiable_information': True,
                 'sensitivity_of_data': 'High',
                 'type_of_data_compromised': ['Protected Health Information',
                                              'Personal Information',
                                              'Financial Information']},
 'date_detected': 'November 2021',
 'description': 'Medical Healthcare Solutions, Inc. fell prey to the Conti '
                'ransomware group in November 2021. The attackers gained '
                'access to its networks and accessed the protected health '
                'information of its customers and removed several files from '
                'its network. The compromised information included name, '
                'address, date of birth, sex, phone number, email address, '
                'Social Security number, driver’s license/state ID number, '
                'financial account number, routing number, payment card '
                'number, card CVV/expiration, and other personal information '
                'of its customers. MHS immediately shut down its data system, '
                'conducted an extensive investigation, and notified law '
                'enforcement agencies and the impacted customers.',
 'impact': {'data_compromised': ['name',
                                 'address',
                                 'date of birth',
                                 'sex',
                                 'phone number',
                                 'email address',
                                 'Social Security number',
                                 'driver’s license/state ID number',
                                 'financial account number',
                                 'routing number',
                                 'payment card number',
                                 'card CVV/expiration',
                                 'other personal information']},
 'investigation_status': 'Completed',
 'motivation': 'Financial gain',
 'ransomware': {'data_exfiltration': True, 'ransomware_strain': 'Conti'},
 'response': {'communication_strategy': 'Notified impacted customers',
              'containment_measures': 'Shut down data system',
              'law_enforcement_notified': True},
 'threat_actor': 'Conti ransomware group',
 'title': 'Conti Ransomware Attack on Medical Healthcare Solutions, Inc.',
 'type': 'Ransomware'}