Security News > 2021 > June > Scripps Health notifies patients of data breach after ransomware attack

Nonprofit healthcare provider, Scripps Health in San Diego, has disclosed a data breach exposing patient information after suffering a ransomware attack last month.
On Tuesday, Scripps Health released an updated report on the attack and says that threat actors stole patient data during the attack.
The ransomware gangs then use the stolen data as leverage by saying they will release the stolen data on data leak sites if the victim does not pay the ransom.
After investigating the stolen data, Scripps Health determined that the attackers stole personal information for certain patients.
"For certain patients, this information included one or more of their names, addresses, dates of birth, health insurance information, medical record numbers, patient account numbers, and/or clinical information, such as physician name, date(s) of service, and/or treatment information," warns Scripps Health.
For those patients whose data was exposed, Scripps Health has begun mailing notification letters on June 1st, 2021.
News URL
Related news
- Medusa ransomware group claims attack on UK's Gateshead Council (source)
- Otelier data breach exposes info, hotel reservations of millions (source)
- Ransomware attack forces Brit high school to shut doors (source)
- Ransomware gangs pose as IT support in Microsoft Teams phishing attacks (source)
- PayPal to pay $2 million settlement over 2022 data breach (source)
- UnitedHealth now says 190 million impacted by 2024 data breach (source)
- Security pros more confident about fending off ransomware, despite being battered by attacks (source)
- PowerSchool starts notifying victims of massive data breach (source)
- Only 13% of organizations fully recover data after a ransomware attack (source)
- Ransomware attack at New York blood services provider – donors turned away during shortage crisis (source)