460k Impacted by Kootenai Health Ransomware Attack

Share This Post

Coeur d’Alene, Idaho-based healthcare provider Kootenai Health has disclosed a data breach impacting the personal and health information of more than 460,000 individuals.

The incident was identified on March 2, when certain IT systems were disrupted, the organization, which provides healthcare services in northern Idaho and throughout the Inland Northwest, said in a notice on its website.

Subsequently, Kootenai Health discovered that the attackers had access to its network for over a week, and that certain data was exfiltrated on February 22, including personally identifiable information (PII) and protected health information (PHI).

The stolen information includes names, dates of birth, Social Security numbers, driver’s license numbers, government-issued identification numbers, medical treatment information, medical record numbers, medical diagnoses, medication details, and health insurance information.

The healthcare provider says that the incident did not impact its operations and that its hospitals and clinics continued to serve patients.

On August 12, Kootenai Health sent written notification letters to the impacted individuals. The organization submitted a copy of the letter to the Maine Attorney General’s Office, revealing that 464,088 people were affected.

Kootenai Health is providing the impacted individuals with 12 months of credit and identity protection services.

While the healthcare organization did not share specific details on who was responsible for the data breach, the 3AM ransomware gang claimed responsibility for the attack in March.

Advertisement. Scroll to continue reading.

The group has since published a 22 gigabytes archive containing data allegedly stolen from Kootenai Health, which suggests that the healthcare provided did not pay a ransom.

Related: 200k Impacted by East Valley Institute of Technology Data Breach

Related: Physical Security Firm ADT Confirms Hack and Data Breach

Related: Wawa Agrees to Payment, Security Changes for ’19 Data Breach

Related: Key Lawmakers Float New Rules for Personal Data Protection; Bill Would Make Privacy a Consumer Right

This post was originally published on this site

More Articles
Article

Navigating SEC Regulations In Cybersecurity And Incident Response

Free video resource for cybersecurity professionals. As 2024 approaches, we all know how vital it is to keep up to date with regulatory changes that affect our work. We get it – it’s a lot to juggle, especially when you’re in the trenches working on an investigation, handling, and responding to incidents.

Report

Harassment or bullying behavior
Contains mature or sensitive content
Contains misleading or false information
Contains abusive or derogatory content
Contains spam, fake content or potential malware

Block Member?

Please confirm you want to block this member.

You will no longer be able to:

  • See blocked member's posts
  • Mention this member in posts
  • Invite this member to groups
  • Message this member
  • Add this member as a connection

Please note: This action will also remove this member from your connections and send a report to the site admin. Please allow a few minutes for this process to complete.

Report

You have already reported this .