American healthcare giant Henry Schein has finally reported suffering ransomware attacks to the US government, almost a year after the incidents took place.
The company has filed a data breach notification with the Office of the Maine Attorney General detailing the attacks in October 2024 by the now-defunct BlackCat (AKA ALPHV) ransomware operation, which broke into its systems and stole 35TB of sensitive company data.
The details about the nature of the stolen files were not disclosed, so we don’t know if they include payment information, banking data, or more.
Identity theft
The company allegedly tried to negotiate with the crooks to have the files deleted, but the negotiations broke down. This resulted in the second break-in, by the same threat actor, approximately a month later. After that, the crooks started leaking the information stolen in the attack, and threatened to encrypt the systems for the third time. We don’t know if that ever happened, since only a portion of the data was allegedly leaked.
Now, in the data breach notification, Henry Schein confirmed that the number of affected individuals is 166,432.
“Please be assured that, upon discovery of the incident, our cybersecurity team immediately took a series of steps, including taking certain systems offline and other steps intended to contain the incident, hiring cybersecurity experts, conducting an investigation to identify and remove any malicious files and determine company systems that were impacted, and seeking to implement measures to fortify our defenses going forward,” the company said in its announcement.
It is now offering affected individuals identity theft detection and resolution tools…
Read full post on Tech Radar
Discover more from Technical Master - Gadgets Reviews, Guides and Gaming News
Subscribe to get the latest posts sent to your email.