Topics
Latest
AI
Amazon
Image Credits:Dave Whitney / Getty Images
Apps
Biotech & Health
Climate
Image Credits:Dave Whitney / Getty Images
Cloud Computing
Commerce
Crypto
enterprisingness
EVs
Fintech
Fundraising
Gadgets
game
Government & Policy
Hardware
Layoffs
Media & Entertainment
Meta
Microsoft
Privacy
Robotics
Security
societal
Space
startup
TikTok
Transportation
Venture
More from TechCrunch
event
Startup Battlefield
StrictlyVC
Podcasts
Videos
Partner Content
TechCrunch Brand Studio
Crunchboard
Contact Us
Kentucky - based nonprofit healthcare scheme Norton Healthcare has confirm that hackers accessed the personal data of one thousand thousand of patients and employee during an earlier ransomware attack .
Norton operates more than 40 clinic and hospitals in and around Louisville , Kentucky , and is the city ’s third - bombastic secret employer . The organization has more than 20,000 employees , and more than 3,000 full provider on its medical faculty , harmonize to its website .
Ina charge with Maine ’s lawyer superior general on Friday , Norton said that the tender data of just about 2.5 million patients , as well as employee and their dependants , was accessed during its May ransomware attack .
In a letter sent to those affected , the nonprofit aver that hackers had access to “ sure internet reposition devices between May 7 and May 9 , ” but did not get at Norton Healthcare ’s medical record organisation or Norton MyChart , its electronic medical record system .
But Norton admitted that following a “ fourth dimension - consuming ” internal probe , which the establishment completed in November , Norton find that hacker accessed a “ full image of sensitive info , ” including names , dates of birth , Social Security numbers , wellness and insurance selective information and medical identification telephone number .
Norton Healthcare says that , for some someone , the uncover data may have also let in fiscal account numbers , number one wood licence or other government ID identification number , as well as digital signature .
It ’s not known if any of the accessed data point was encrypted .
Join us at TechCrunch Sessions: AI
Exhibit at TechCrunch Sessions: AI
Norton says it advise natural law enforcement about the blast and confirmed it did not pay any ransom money payment . The organization did not name the hackers responsible for the cyberattack , but the incident was claimed by the notorious ALPHV / BlackCat ransomware crew in May , according to data break news site DataBreaches.net , which report that the radical take it exfiltrated almost five terabytes of information . TechCrunch could not support this , as the ALPHV site was inaccessible at the time of writing .
Norton Healthcare is just one of many U.S.-based healthcare organizations to experience a datum breach impacting millions of individuals this class .
The U.S. Department of Health and Human Services ( HHS)recently saidthat there had been more than a two - fold increase in “ large falling out ” reported to its Office for Civil Rights over the past four years , and an almost three - fold step-up in ransomware attacks . The Union government section sum that breaches report this yr had affected over 88 million somebody , up by 60 % compare to 2022 .
accord to theHHS data falling out portal , U.S. health care provider HCA Healthcare experiencedthe largest health care information infract in 2023so far after hackers post the tender data point of approximately 11 million patients on a well - known cybercrime meeting place .
Perry Johnson & Associates , or PJ&A , a Nevada - base medical transcription service , see thesecond largest healthcare datum breachafter a cyberattack saw the sensitive data point of almost nine million patients break . This was followed bya rupture at U.S. dental hulk Managed Care of North America(MCNA ) , which impacted 8.9 million of the organization ’s clients .
Millions of patient role scan and health record spilling online thanks to decades - old protocol hemipteran
