Saturday, July 20, 2024

Ascension Hack Caused By an Employee Who Downloaded a Malicious File

Ascension, a leading healthcare provider, has made significant strides in its investigation and recovery efforts following a recent cybersecurity breach.

With the assistance of third-party cybersecurity experts, the company has identified that attackers accessed files from a small number of file servers used primarily for daily and routine tasks.

These compromised servers represent only seven out of approximately 25,000 servers across Ascension’s network.

While the investigation is ongoing, it is believed that some of the files may contain Protected Health Information (PHI) and Personally Identifiable Information (PII) for specific individuals.

However, the specific data affected may vary from person to person.

Cause of the Breach

The breach was traced back to an employee who inadvertently downloaded a malicious file, mistaking it for a legitimate one.

Ascension has emphasized that this was an honest mistake, not a deliberate act.

Importantly, no evidence suggests that data was taken from the company’s Electronic Health Records (EHR) and other clinical systems, where full patient records are securely stored.

The company is conducting a thorough review of the potentially impacted files, which will take considerable time.

Support for Affected Individuals

To provide peace of mind to its patients and associates, Ascension is offering complimentary credit monitoring and identity theft protection services to anyone who requests them.

This offer is available to all Ascension patients and associates, regardless of whether their data was involved in the incident.

Individuals interested in enrolling in these services can contact the dedicated call center at 1-888-498-8066.

Ascension has assured that this offer is a proactive measure to reassure its community and does not imply that any specific individual’s data has been compromised.

Ascension remains committed to transparency and will notify affected individuals and regulatory bodies once the data analysis is complete.

The company regrets any disruption or concern caused by this incident and is dedicated to addressing the situation seriously.

Free Webinar! 3 Security Trends to Maximize MSP Growth -> Register For Free


Latest articles

Hackers Claiming Dettol Data Breach: 453,646 users Impacted

A significant data breach has been reported by a threat actor known as 'Hana,'...

CrowdStrike Update Triggers Widespread Windows BSOD Crashes

A recent update from cybersecurity firm CrowdStrike has caused significant disruptions for Windows users,...

Operation Spincaster Disrupts Approval Phishing Technique that Drains Victim’s Wallets

Chainalysis has launched Operation Spincaster, an initiative to disrupt approval phishing scams that have...

Octo Tempest Know for Attacking VMWare ESXi Servers Added RansomHub & Qilin to Its Arsenal

Threat actors often attack VMware ESXi servers since they accommodate many virtual machines, which...

TAG-100 Actors Using Open-Source Tools To Attack Gov & Private Orgs

Hackers exploit open-source tools to execute attacks because they are readily available, well-documented, and...

macOS Users Beware Of Weaponized Meeting App From North Korean Hackers

Meeting apps are often targeted and turned into weapons by hackers as they are...

Hackers Exploiting Legitimate RMM Tools With BugSleep Malware

Since October 2023, MuddyWater, which is an Iranian threat group linked to MOIS, has...
Divya is a Senior Journalist at GBhackers covering Cyber Attacks, Threats, Breaches, Vulnerabilities and other happenings in the cyber world.

Free Webinar

Low Rate DDoS Attack

9 of 10 sites on the AppTrana network have faced a DDoS attack in the last 30 days.
Some DDoS attacks could readily be blocked by rate-limiting, IP reputation checks and other basic mitigation methods.
More than 50% of the DDoS attacks are employing botnets to send slow DDoS attacks where millions of IPs are being employed to send one or two requests per minute..
Key takeaways include:

  • The mechanics of a low-DDoS attack
  • Fundamentals of behavioural AI and rate-limiting
  • Surgical mitigation actions to minimize false positives
  • Role of managed services in DDoS monitoring

Related Articles