TZUTC: -0500   
   MSGID: 47.consprcy@1:2320/105 2c0611e2   
   PID: Synchronet 3.20a-Linux master/acc19483f Apr 26 202 GCC 12.2.0   
   TID: SBBSecho 3.20-Linux master/acc19483f Apr 26 2024 23:04 GCC 12.2.0   
   BBSID: CAPCITY2   
   CHRS: ASCII 1   
   Over a million patients potentially hit after another US healthcare provider   
   hit by cyberattack   
      
   Date:   
   Mon, 03 Feb 2025 14:03:00 +0000   
      
   Description:   
   Names, Social Security numbers and more were taken in the breach.   
      
   FULL STORY   
      
   More than a million people may have had their sensitive information stolen,   
   after a skilled hacker broke into the IT system of Community Health Center   
   (CHC).    
      
   The company filed a new report with the Maine Office of the Attorney General   
   which said it spotted unusual activity in its computer systems, on January 2.    
      
   That same day, we brought in experts to investigate and reinforce the    
   security of our systems. They found that a skilled criminal hacker got into   
   our system and took some data, which might include your personal information.    
      
   The data stolen in this attack includes peoples names, dates of birth,   
   addresses, phone numbers, emails, diagnoses, treatment details, test results,   
   Social  Security numbers, and health insurance information - all of which is   
   more than enough to run highly personalized phishing attacks, and maybe even   
   wire fraud.    
      
   CHC is a Connecticut-based nonprofit healthcare provider that offers   
   comprehensive primary care, dental, behavioral health, and specialty services   
   to underserved communities.    
      
   This doesnt seem to have been a ransomware attack, however, as CHC added that   
   the actors did not delete, or lock, any of the affected data. Therefore, the   
   attack did not affect its daily operations, it added.    
      
   We believe we stopped the criminal hackers access within hours, and that    
   there is no current threat to our systems.    
      
   CHC is now notifying affected individuals about the breach and offering   
   assistance, including free identity theft protection through IDX. In the   
   letter, CHC said that IDX will provide 24 months of credit and CyberScan   
   monitoring. Furthermore, the company set aside a $1M reimbursement policy,    
   and promised to help recover stolen identities.    
      
   In recent months, ransomware groups have started moving away from encryptors   
   and focusing solely on data theft. Apparently, it is equally effective in   
   terms of ransom demands, yet cheaper and easier to pull off. It seems that in   
   this case, CHC was not asked for a ransom yet.    
      
    Via TechCrunch   
      
   ======================================================================   
   Link to news story:   
   https://www.techradar.com/pro/security/over-a-million-patients-potentially-hit   
   -after-another-us-healthcare-provider-hit-by-cyberattack   
      
   $$   
   --- SBBSecho 3.20-Linux   
    * Origin: capitolcityonline.net * Telnet/SSH:2022/HTTP (1:2320/105)   
   SEEN-BY: 105/81 106/201 128/187 129/305 153/7715 154/110 218/700 226/30   
   SEEN-BY: 227/114 229/110 111 114 206 300 307 317 400 426 428 470 664   
   SEEN-BY: 229/700 705 266/512 291/111 320/219 322/757 342/200 396/45   
   SEEN-BY: 460/58 712/848 902/26 2320/0 105 3634/12 5075/35   
   PATH: 2320/105 229/426