New York Blood Center, one of the largest independent blood centers in the U.S. serving over 75 million people, suffered a ransomware attack in January 2024. Hackers accessed its network between January 20 and 26, exfiltrating sensitive data before deploying ransomware. The breach compromised **patient data** (names, health information, test results) and **employee information** (Social Security numbers, driver’s licenses, government IDs, and financial account details for current/former staff). Over **10,557 Texas residents** were confirmed affected, though total victim counts remain undisclosed. The organization, which supplies ~4,000 blood units daily to 400+ hospitals, also had **clinical data** tied to services like apheresis, cell therapy, and diagnostic testing exposed. The attack disrupted operations, required a months-long investigation (concluded June 30), and triggered regulatory notifications. The incident aligns with a broader trend of ransomware targeting blood service providers, including OneBlood and Synnovis.
Source: https://therecord.media/blood-center-discloses-details-on--january-ransomware-attack
TPRM report: https://www.rankiteo.com/company/new-york-blood-center
"id": "new4302343091025",
"linkid": "new-york-blood-center",
"type": "Ransomware",
"date": "1/2024",
"severity": "100",
"impact": "5",
"explanation": "Attack threatening the organization’s existence"{'affected_entities': [{'customers_affected': 10557,
'industry': 'healthcare (blood services)',
'location': 'New York, USA (serving nationwide)',
'name': 'New York Blood Center',
'size': 'large (serves 75+ million people, 400+ '
'hospitals)',
'type': 'non-profit organization'}],
'customer_advisories': ['notification letters',
'website notice',
'call center support'],
'data_breach': {'data_encryption': True,
'data_exfiltration': True,
'number_of_records_exposed': 10557,
'personally_identifiable_information': True,
'sensitivity_of_data': 'high (PII, PHI, financial data)',
'type_of_data_compromised': ['patient names',
'health information',
'test results',
'employee Social Security '
'numbers',
'driver’s licenses',
'government ID cards',
'financial account information',
'clinical data from healthcare '
'providers']},
'date_detected': '2024-01-26',
'date_publicly_disclosed': '2024-09-05',
'date_resolved': '2024-06-30',
'description': 'One of the largest independent blood centers serving over 75 '
'million people across the U.S. suffered a ransomware attack '
'in January 2024. Hackers accessed the network between January '
'20 and 26, exfiltrating patient and employee data before '
'deploying ransomware. The stolen information included names, '
'health data, test results, Social Security numbers, driver’s '
'licenses, government IDs, and financial account information '
'for some current and former employees. Notification letters '
'were mailed to victims starting September 5, 2024.',
'impact': {'brand_reputation_impact': True,
'data_compromised': True,
'identity_theft_risk': True,
'payment_information_risk': True},
'initial_access_broker': {'high_value_targets': ['patient data',
'employee records',
'clinical information'],
'reconnaissance_period': '2024-01-20 to 2024-01-26'},
'investigation_status': 'completed (as of 2024-06-30)',
'ransomware': {'data_encryption': True, 'data_exfiltration': True},
'references': [{'source': 'New York Blood Center website notice'},
{'source': 'Regulatory filings (Maine, Texas, New Hampshire, '
'California)'}],
'regulatory_compliance': {'regulatory_notifications': ['Maine',
'Texas',
'New Hampshire',
'California']},
'response': {'communication_strategy': ['notification letters (mailed '
'starting 2024-09-05)',
'website notice',
'dedicated call center'],
'incident_response_plan_activated': True},
'title': 'Ransomware Attack on New York Blood Center',
'type': ['ransomware', 'data breach']}