Hackers steal medical information of over 850,000 U.S. citizens
In a series of recent cyberattacks, healthcare providers across the globe have found themselves in the crosshairs of cybercriminals. This article will delve into some of the most significant attacks and their financial and human impacts.
Starting in the United States, the Optum subsidiary of UnitedHealth Group suffered a ransomware attack by ALPHV affiliates in 2024, resulting in financial impacts exceeding $2 billion. The breach went undetected for an extended period, affecting a substantial number of Americans.
Similarly, Change Healthcare, a US-based company, was targeted by the same group, causing costs to rise to over $2 billion within a year. The attack on Change Healthcare affected around 100 million Americans, highlighting the wide-reaching consequences of such attacks.
The issue of cyberattacks on healthcare organizations is not confined to the US. In the UK, London hospitals were hit by the Qilin ransomware attack, causing severe delays to pathology services, including cancer surgeries, and leading to a confirmed death. The financial impact of this attack on the suppliers was not provided.
In North Carolina, Goshen Medical Center reported a breach affecting 456,385 people. The breach went undetected for almost a month, from February 15 to March 4. Basic personal information, social security numbers, driver's license numbers, and medical record numbers were exposed in this attack.
Florida's Retina Group of Medical Associates (MAB) and Medical Associates of Brevard (MAB) also reported breaches. MAB affected 246,711 people, with financial account information potentially exposed for a limited number of individuals. Retina Group of Florida's attack affected 153,429 individuals and may have exposed sensitive personal and protected health information.
The group responsible for the Qilin ransomware attack told a website they had no regrets for what they did, showing a chilling disregard for the impact of their actions.
These cyberattacks underscore the importance of robust cybersecurity measures in the healthcare sector. As cybercriminals continue to target healthcare providers, it is crucial that steps are taken to protect patient data and prevent such attacks from causing further harm.
