Sal Yousufi’s Post

“Group Health Cooperative of South Central Wisconsin (GHC-SCW) has started notifying more than half a million people that their personal information was stolen in a ransomware attack. … The stolen information includes names, addresses, phone numbers, email addresses, dates of birth, dates of death, Social Security numbers, and Medicare/Medicaid numbers. … While GHC-SCW did not name the cybercrime group responsible for the attack, the BlackSuit ransomware gang listed the organization on its Tor-based site in March, claiming to have stolen patient and member information, financial documents, business documents, several databases, and emails.” https://lnkd.in/dbrhb5ZQ With Kiteworks, organizations effectively manage third-party risk with maximum visibility and control over the PII, PHI, and IP employees share with third parties. Visit our website to learn more. #cybersecurity #kiteworks #databreach #compliance #dataprotection #datasecurity

“Group Health Cooperative of South Central Wisconsin (GHC-SCW) has started notifying more than half a million people that their personal information was stolen in a ransomware attack. … The stolen information includes names, addresses, phone numbers, email addresses, dates of birth, dates of death, Social Security numbers, and Medicare/Medicaid numbers. … While GHC-SCW did not name the cybercrime group responsible for the attack, the BlackSuit ransomware gang listed the organization on its Tor-based site in March, claiming to have stolen patient and member information, financial documents, business documents, several databases, and emails.” https://lnkd.in/d2EyW2Qu With Kiteworks, organizations effectively manage third-party risk with maximum visibility and control over the PII, PHI, and IP employees share with third parties. Visit our website to learn more. #cybersecurity #kiteworks #databreach #compliance #dataprotection #datasecurity

“Group Health Cooperative of South Central Wisconsin (GHC-SCW) has started notifying more than half a million people that their personal information was stolen in a ransomware attack. … The stolen information includes names, addresses, phone numbers, email addresses, dates of birth, dates of death, Social Security numbers, and Medicare/Medicaid numbers. … While GHC-SCW did not name the cybercrime group responsible for the attack, the BlackSuit ransomware gang listed the organization on its Tor-based site in March, claiming to have stolen patient and member information, financial documents, business documents, several databases, and emails.” https://lnkd.in/gdxb-G2Z With Kiteworks, organizations effectively manage third-party risk with maximum visibility and control over the PII, PHI, and IP employees share with third parties. Visit our website to learn more. #cybersecurity #kiteworks #databreach #compliance #dataprotection #datasecurity

“Group Health Cooperative of South Central Wisconsin (GHC-SCW) has started notifying more than half a million people that their personal information was stolen in a ransomware attack. … The stolen information includes names, addresses, phone numbers, email addresses, dates of birth, dates of death, Social Security numbers, and Medicare/Medicaid numbers. … While GHC-SCW did not name the cybercrime group responsible for the attack, the BlackSuit ransomware gang listed the organization on its Tor-based site in March, claiming to have stolen patient and member information, financial documents, business documents, several databases, and emails.” https://lnkd.in/eryz9abK With Kiteworks, organizations effectively manage third-party risk with maximum visibility and control over the PII, PHI, and IP employees share with third parties. Visit our website to learn more. #cybersecurity #kiteworks #databreach #compliance #dataprotection #datasecurity

GHC-SCW Data Breach Alert! Over half a million individuals impacted. GHC-SCW experienced a ransomware attack on January 25, where attackers compromised their systems. Though no file-encrypting ransomware was deployed, personal and protected health information was stolen. As an observer, I feel the hack highlights how important it is to have strong security procedures in place to secure sensitive patient data, including adhering to laws like HIPAA. The breach means possible regulatory attention, operational difficulties, financial losses, and harm to GHC-SCW's brand. Furthermore, the breach has significant ramifications for the over 500,000 people whose data was accessed, putting them at higher risk of financial fraud and identity theft. The organization promptly notified the impacted individuals, relevant authorities, and consumer reporting agencies. BLACKSUIT RANSOMWARE: BlackSuit is a type of ransomware, which is malicious software designed to encrypt files on a victim's computer or network, rendering them inaccessible. BlackSuit ransomware has been linked to previous attacks on healthcare providers and other industries. Its payloads are very similar to Royal Ransomware payloads. Payloads support both Windows and Linux operating systems. Payloads are delivered via phishing email or third party framework (e.g., Empire, Metasploit, Cobalt Strike). The use of malicious torrent files has also been observed as a delivery vector for BlackSuit ransomware. It utilize OpenSSL’s implementation of AES for data encryption, which supports the intermittent encryption options (-percent option). Linux payloads have the ability to target and manipulate VMWare ESXi servers, via the -killvm option, for example. https://lnkd.in/dAmpmKpz #Cybersecurity #RansomwareAttack #DataBreach #HIPAACompliance #HealthcareSecurity #BlackSuitRansomware #SecurityAwareness

Hey Y'all! Well, it's not over yet for Change Healthcare. It appears that a subset of the BlackCat crew that were responsible for the cyberattack are now stating they still have patient data and demanding ransom for it. According to the article, the subset faction actually carried out the attack as a contractor were not paid by BlackCat for the attack (Thieves acting unethically? I'm shocked!). So now they are demanding money from Change Healthcare with the threat of releasing patient data and perhaps some agreements between Change Healthcare and its partners. Keep an eye on this, y'all. Please share/repost if you feel others may benefit from this information. #medicalcoding #medicalbilling #cyberattack #cybersecurity #medicaloffice #healthcare #medical #practicemanagement #patientdata #CHCS https://lnkd.in/e8RKzDSD

Recently, Change Healthcare, in the US, faced a sophisticated ransomware attack, highlighting the complexities of #cybersecurity. Despite paying a ransom to the ALPHV gang, a dispute among the criminals led to a second group, RansomHub, emerging + demanding another payment! This story is a serious reminder that paying a ransom does not guarantee data safety. And can lead to further extortion. This case also underlines the importance of robust cybersecurity measures. Organisations must prioritize comprehensive strategies, including risk assessments, employee training + strong incident response plans, to protect against such threats. For Change Healthcare, the challenge continues as they collaborate with law enforcement and experts to mitigate the damage and prevent future incidents. #Cybersecurity #EmailSecurity

Hello everyone, There is an ongoing development regarding Change Healthcare. A subset of the BlackCat group, responsible for the previous cyberattack, is now claiming to possess patient data and is demanding ransom. This subset, which reportedly carried out the attack as a contractor, alleges that they were not paid by BlackCat for their services. Consequently, they are threatening to release patient data and potentially some agreements between Change Healthcare and its partners unless their demands are met. #Cybersecurity #DataBreach #Ransomware #ChangeHealthcare https://lnkd.in/dsXaBvys

This doesn't have to be your reality. Let's discuss how we take ransomware, out of the equation, by securing your data in a way that makes it useless to anyone who takes it. "According to the report, 67% of healthcare organizations were targeted by ransomware in the past year, up from 60% in 2023. This trend starkly contrasts with the decline in ransomware attacks across other industries, where the overall rate dropped to 59% in 2024. The healthcare sector now ranks among the hardest hit globally, second only to central and federal government bodies." #OpenText #Voltage #datasecurity

🔒 Ascension Faces Class Action Lawsuits for Black Basta Ransomware Attack I just came across an eye-opening article on Healthcare Finance News about the class action lawsuits facing Ascension after a severe ransomware attack. The cyberattack targeted one of the largest health systems in the country, underscoring a disturbing trend in the healthcare industry. 📈 THE LARGER TREND This incident follows a February ransomware attack on Change Healthcare, which continues to disrupt operations. Change, owned by Optum and affiliated with UnitedHealthcare, was forced offline, leading to significant delays in claims payment and affecting hospital and physician practice revenue. ⁉ In a stark revelation, UnitedHealth Group CEO Andrew Witty confirmed that the company paid a $22 million ransom in bitcoin to safeguard personal health information. 🔐 Cybersecurity is becoming a critical issue in healthcare, with far-reaching consequences for operations and patient data security. It's essential for healthcare organizations to bolster their defenses against such threats. 📰 Read the full article here: https://lnkd.in/giYqGQew #Healthcare #Cybersecurity #Ransomware #DataSecurity #HealthIT #Ascension #ChangeHealthcare #Optum #UnitedHealthcare