Who:
Victim: Lehigh Valley Health Network (LVHN), a Pennsylvania healthcare provider.
Perpetrator: Alphv/BlackCat ransomware gang.
What:
Incident: A ransomware attack on LVHN in early 2023, during which attackers accessed the network, stole data, and deployed ransomware. The data breach affected over 130,000 patients and employees, exposing personal and medical information, including sensitive clinical images.
Who:
Rite Aid, the third-largest drugstore chain in the United States.
RansomHub ransomware gang.
What:
Rite Aid confirmed a data breach following a cyberattack in June, claimed by the RansomHub ransomware operation.
Who:
UnitedHealth Group, a major U.S. healthcare company.
What:
UnitedHealth Group disclosed that the cyberattack on its Change Healthcare unit will cost between $2.3 billion and $2.45 billion in 2024.
The cyberattack occurred in February, affecting Change Healthcare's billing and payment system, which caused disruptions for physicians and medical care providers nationwide.
Who: WebTPA, a third-party administrator providing healthcare management and administrative services.
What: WebTPA disclosed a data breach impacting approximately 2.5 million individuals. The breach involved unauthorized access to personal information, including names, contact details, dates of birth and death, Social Security numbers, and insurance information.
Impact: The breach exposed sensitive personal information of nearly 2.5 million people. Although no financial or treatment information was compromised, the affected individuals are at risk of identity theft or fraud. WebTPA is offering two years of complimentary identity monitoring services through Kroll and has implemented enhanced security measures. The company urges impacted individuals to remain vigilant and monitor their credit reports and Explanations of Benefits (EOBs) for any suspicious activity.
Read the full article HERE
