Friday, March 29, 2024
HomeSECURITYLockBit ransomware stole and published the data of 9 million medical patients...

LockBit ransomware stole and published the data of 9 million medical patients MCNA Dental

-


LockBit ransomware stole and published the data of 9 million medical patients MCNA Dental

Paying a $10 million ransom was apparently not part of the company’s plans at all.

Company MCNA Dentalone of the largest providers of dental care and low-income insurance in the United States (Medicaid and CHIP), has issued a security breach notice for almost 9 million patients.

in the notice, published on Friday , MCNA reports that on March 6, 2023, it detected unauthorized access to its computer systems. According to the results of the investigation, it turned out that hackers first penetrated the MCNA network on February 26 of this year.

During this time, the attackers stole data containing the following information from almost nine million MCNA Dental customers:

  • Full name
  • Address
  • Date of Birth
  • Telephone
  • Email
  • Social Security number
  • Driver’s license number
  • State ID number
  • Health insurance
  • Dental or braces care (visits, dentist name, doctor name, treatment history, x-rays, photos, treatment appointments)
  • Bills and insurance claims

IN notice filed with the Maine Attorney General’s office, says the hack affected 8,923,662 people, including patients, parents, guardians, or guarantors.

MCNA states that it has already taken all necessary steps to address the situation and improve the security of its systems in order to prevent similar incidents in the future. The company also turned to law enforcement for assistance in preventing the misuse of stolen information.

Notices sent by the company to affected individuals contain instructions on how to receive 12 months of free identity theft protection and credit monitoring through the IDX service.

The LockBit ransomware group claimed an attack on MCNA on March 7, 2023, when it published the first samples of data stolen from a medical provider. The group threatened to release 700GB of sensitive and confidential information they allegedly siphoned off the MCNA networks unless they were paid $10 million.

Apparently, the ransom was not transferred to the cybercriminals, since already on April 7, the group published all the data on its leak website, making it available for download by anyone.

All affected users should now monitor their credit reports for fraud and signs of identity theft. In addition, users should be wary of spear phishing emails that can use leaked data to deceive and steal additional sensitive information such as credentials.



Source link

www.securitylab.ru

LEAVE A REPLY

Please enter your comment!
Please enter your name here

Most Popular