Security News > 2023 > August > Rhysida claims ransomware attack on Prospect Medical, threatens to sell data
The Rhysida ransomware gang has claimed responsibility for the massive cyberattack on Prospect Medical Holdings, claiming to have stolen 500,000 social security numbers, corporate documents, and patient records.
While PMH did not respond to queries about the security incident, BleepingComputer later learned that the Rhysida ransomware gang was behind the attack.
Rhysida is a ransomware operation that launched in May 2023 and quickly rose to notoriety after attacking the Chilean Army and leaking its data.
Now, the Rhysida ransomware gang has claimed the attack on Prospect Medical Holdings, threatening to sell the company's allegedly stolen data for 50 Bitcoins.
The gang's data leak site also shared numerous screenshots of driver's licenses, social security cards, documents, and what appears to be patients' medical information.
Rhysida ransomware behind recent attacks on healthcare.
News URL
Related news
- US indicts 8Base ransomware operators for Phobos encryption attacks (source)
- RA World Ransomware Attack in South Asia Links to Chinese Espionage Toolset (source)
- Chinese espionage tools deployed in RA World ransomware attack (source)
- Lee Enterprises newspaper disruptions caused by ransomware attack (source)
- London celebrity talent agency reports itself to ICO following Rhysida attack claims (source)
- Southern Water says Black Basta ransomware attack cost £4.5M in expenses (source)
- Qilin ransomware claims attack at Lee Enterprises, leaks stolen data (source)
- Ransomware gangs exploit Paragon Partition Manager bug in BYOVD attacks (source)
- Hackers Exploit Paragon Partition Manager Driver Vulnerability in Ransomware Attacks (source)
- Hunters International ransomware claims attack on Tata Technologies (source)