A cyber-attack on Prepared Parenthood Los Angeles (PPLA) has resulted in the exposure of patients’ personally figuring out details (PII).
The company stated in a notice posted to its website on Wednesday that suspicious activity was detected on its laptop or computer network on Oct 17.
An investigation into the action remains ongoing on the other hand, it has been decided that an unauthorized person broke into PPLA’s technique among Oct 9, 2021, and October 17, 2021.
PPLA stated that through the attack “malware/ransomware” was put in on its network and “some files” were exfiltrated from its methods.
A overview of the compromised files discovered that individual facts experienced been obtainable to the menace actor.
“On November 4, we recognized information that contained selected patients’ names, and one or far more of the adhering to: dates of delivery, addresses, insurance identification quantities, and medical knowledge, these as analysis, remedy, or prescription info,” wrote PPLA.
PPLA operates 21 wellness centers in the Southern California town. The Sacramento Bee reports that 400,000 PPLA clients were impacted by the attack.
PPLA spokesperson John Erickson told the Washington Write-up that the cyber-attack appeared to be part of a ransomware extortion scheme, in which hackers encrypt information and demand from customers a ransom for a decryption crucial.
No evidence has been discovered to recommend that any of the compromised information and facts has been utilized for fraudulent functions.
PPLA is notifying impacted individuals by mail and encourages individuals affected by the incident to assessment statements from their healthcare suppliers and insurers for suspicious activity.
“Ransomware continues to be a key issue for organizations around the world, in particular now that details is stolen ahead of becoming encrypted,” mentioned Erich Kron, security awareness advocate at KnowBe4.
“This stolen facts, and the threats by the ransomware gangs that accomplish the attacks to launch it publicly, have contributed to the skyrocketing ransom quantities we are viewing.”
Kron added that the injury brought about by this ransomware attack could be a lot more than economic.
“In this case, really particular and personal facts similar to quite controversial techniques has been stolen, a little something that could straight affect the rely on folks have in the firm, especially if the info is released,” stated Kron.
Some elements of this report are sourced from: