Methodist McKinney Hospital

Methodist McKinney Hospital was targeted in a ransomware attack by the Karakurt ransomware group.

The threat actors allegedly posted 360 gigabytes of personal data on the dark web.

The information that was posted on the web included invoices, contracts, prescription scans, patient cards, and financial documents.

The compromised information included name, address, Social Security number, date of birth, medical history information, medical diagnosis information, treatment information, medical record number, and health insurance information.

MMH also took steps to secure its systems and reviewed the process of reviewing and enhancing its security policies and procedures.

Source: https://healthitsecurity.com/news/karakurt-ransomware-group-targets-methodist-mckinney-hospital-in-cyberattack

TPRM report: https://www.rankiteo.com/company/methodist-mckinney-hospital

"id": "met212891122",
"linkid": "methodist-mckinney-hospital",
"type": "Ransomware",
"date": "6/2017",
"severity": "100",
"impact": "5",
"explanation": "Attack threatening the organization's existence"

{'affected_entities': [{'industry': 'Healthcare',
                        'name': 'Methodist McKinney Hospital',
                        'type': 'Healthcare'}],
 'data_breach': {'data_exfiltration': '360 gigabytes of personal data',
                 'file_types_exposed': ['invoices',
                                        'contracts',
                                        'prescription scans',
                                        'patient cards',
                                        'financial documents'],
                 'personally_identifiable_information': True,
                 'sensitivity_of_data': 'High',
                 'type_of_data_compromised': ['name',
                                              'address',
                                              'Social Security number',
                                              'date of birth',
                                              'medical history information',
                                              'medical diagnosis information',
                                              'treatment information',
                                              'medical record number',
                                              'health insurance information']},
 'description': 'Methodist McKinney Hospital was targeted in a ransomware '
                'attack by the Karakurt ransomware group. The threat actors '
                'allegedly posted 360 gigabytes of personal data on the dark '
                'web. The information that was posted on the web included '
                'invoices, contracts, prescription scans, patient cards, and '
                'financial documents. The compromised information included '
                'name, address, Social Security number, date of birth, medical '
                'history information, medical diagnosis information, treatment '
                'information, medical record number, and health insurance '
                'information. MMH also took steps to secure its systems and '
                'reviewed the process of reviewing and enhancing its security '
                'policies and procedures.',
 'impact': {'data_compromised': ['invoices',
                                 'contracts',
                                 'prescription scans',
                                 'patient cards',
                                 'financial documents']},
 'ransomware': {'data_exfiltration': True, 'ransomware_strain': 'Karakurt'},
 'response': {'remediation_measures': ['Securing its systems',
                                       'Reviewing and enhancing its security '
                                       'policies and procedures']},
 'threat_actor': 'Karakurt ransomware group',
 'title': 'Ransomware Attack on Methodist McKinney Hospital',
 'type': 'Ransomware Attack'}