Granger Medical Clinic Targeted in Alleged Ransomware Attack | Console and Associates, P.C. | #ransomware | #cybercrime

On November 24, 2023, Granger Medical Clinic (“GMC”) was added to a ransomware group’s victim list after the group claimed to have stolen confidential information from GMC’s computer network. If the hackers’ claims are true, the incident resulted in an unauthorized party being able to access consumers’ sensitive information, which they claim includes names, Social Security numbers, dates of birth, addresses and phone numbers. Granger Medical Clinic has not yet confirmed it experienced a cyberattack, let alone a data breach. However, if the company’s investigation confirms sensitive data was leaked, Granger Medical Clinic will be required to send data breach letters to all individuals whose information was affected by the recent data security incident.

If you receive a data breach notification from Granger Medical Clinic, it is essential you understand what is at risk and what you can do about it. While GMC has not yet confirmed a breach, it’s never too early to take preventative steps to protect yourself. A data breach lawyer can help you learn more about how to protect yourself from becoming a victim of fraud or identity theft, as well as discuss your legal options following a possible Granger Medical Clinic data breach. For more information, please see our recent piece on the topic here.

Was There a Granger Medical Clinic Data Breach?

It’s too soon to determine if there was indeed a data breach at Granger Medical Center. The cyberattack against Granger Medical Clinic was only recently announced and hasn’t yet been acknowledged by GMC. And while more information is expected in the near future, a recent article on provides some important information about the alleged cyberattack.

According to this source, the NoEscape ransomware group added Granger Medical Clinic to its leak site on November 24, 2023. Evidently, NoEscape claimed that it obtained 35 gigabytes of data. As proof of its claims, NoEscape posted several screenshots of internal files relating to current and former staff members. However, NoEscape also claims that it stole “more than 2 thousand passports and tens of thousands of SSN cards.”

NoEscape sought a ransom of $700,000 from Granger Medical Clinic and demanded payment within 24 hours. While GMC hasn’t publicly commented on the incident, it appears as though the ransom was not paid because, on November 25, 2023, NoEscape claimed to have leaked the data.

Granger Medical Clinic is undoubtedly aware of the incident but is most likely still conducting its own investigation. If GMC confirms that patient or employee data was leaked, it will be required to send out data breach letters to anyone who was affected by the recent data security incident. These letters should provide victims with a list of what information belonging to them was compromised.

More Information About Granger Medical Clinic

Founded in 1954, Granger Medical Clinic is a healthcare provider based in Riverton, Utah. GMC is one of Utah’s largest physician-owned medical groups, with 28 locations across four counties. Granger Medical Clinic works with more than 170 providers who specialize in 29 different subspecialties. Granger Medical Clinic employs more than 474 people and generates approximately $50 million in annual revenue.

Source link

National Cyber Security