Info@NationalCyberSecurity
Info@NationalCyberSecurity
0

Manatee Memorial Hospital reporting ransomware attack, patient info affected | #ransomware | #cybercrime


MANATEE COUNTY, Fla. (WWSB) – Manatee Memorial Hospital has announced that there has been a ransomware incident involving potentially impacted health information, but the information does not appear to have been misused.

ESO, which is a third party vendor the hospital utilizes, reported a cybersecurity incident that occurred in September with additional information released on Oct. 23.

“While we have found no evidence that impacted information has been misused, on October 23, 2023, we determined that some patient information was located on one of the impacted systems. As such, we are notifying impacted individuals of this incident via U.S. mail and offering them resources, in an abundance of caution and so that they can take precautionary steps to protect themselves, should they wish to do so. ESO recommends that individuals proceed with caution and take advantage of the resources provided in this letter,” reads a release for ESO in part.

The impacted data likely had some identifying patient information but officials say it does not appear that any patient information was used.

Manatee Memorial has mailed letters to potentially impacted patients and is working with ESO to increase security measures.

Here’s what Manatee Memorial said in its memo:

Manatee Memorial Hospital (MMH) is providing notice of an incident experienced by a vendor that involved our patients’ protected health information (“PHI”).  Letters were mailed to potentially affected individuals beginning on December 12, 2023.

What Happened: ESO provides software and other services relating to emergency medical services. On October 27, 2023, ESO notified our business associate it detected a ransomware incident. ESO detected the incident on or about September 28, 2023. According to ESO, there is no evidence to date to suggest that the PHI was misused.

What Information Was Involved: The affected data varied by individual, but it may have included personal information such as names, phone numbers, addresses and some sensitive personal or health information.

What We are Doing:  Once our business associate learned of the incident, it launched an investigation into the matter and requested that ESO provide notices to affected individuals and relevant government agencies on behalf of our Organization. ESO has indicated that it has secured the deletion of all affected data and has taken all reasonable steps to prevent the data from being further published or distributed.

What Affected Individuals Can Do: ESO recommends that individuals remain vigilant by regularly monitoring account statements and credit history for any signs of unauthorized transactions or activity. Individuals can learn more about what they can do by calling the number below.

More Information: You can learn more at the following ESO webpage: https://www.eso.com/notice-of-cybersecurity-incident/. ESO has indicated that representatives are available to assist you with questions regarding this incident, between the hours of 9:00 a.m. to 6:30 p.m. Eastern Time, Monday through Friday, excluding holidays. Please call ESO’s help line at (866) 347-8525 with any questions you may have. If you did not receive a letter, but would like to know if you were affected, please contact ESO’s help line.

You can read the full statement from ESO below:

Notice of Cybersecurity Incident

We are committed to providing you with information about an incident that may have exposed certain protected health information and personal information related to the work we do with some of our customers. We take the security of our customers and their patients’ information seriously and want to provide all impacted individuals with information about the incident and resources they can use to protect their personal information.

What Happened

On September 28, 2023, we detected and stopped a sophisticated ransomware incident, in which an unauthorized third party accessed and encrypted some of ESO’s computer systems. We immediately took the affected systems offline, secured our network environment, and engaged third-party forensic specialists to assist us with investigating the extent of any unauthorized activity.

Our investigation determined that the unauthorized third party may have acquired your personal data during this incident. Please know that we have taken all reasonable steps to prevent the data from being further published or distributed, and have notified and are working with federal law enforcement to investigate.

While we have found no evidence that impacted information has been misused, on October 23, 2023, we determined that some patient information was located on one of the impacted systems. As such, we are notifying impacted individuals of this incident via U.S. mail and offering them resources, in an abundance of caution and so that they can take precautionary steps to protect themselves, should they wish to do so. ESO recommends that individuals proceed with caution and take advantage of the resources provided in this letter.

What Information Was Involved

The impacted data varied by individual, but it may have contained personal information, including names, phone numbers, addresses, and some sensitive personal information and/or protected health information. Beginning on 12/12/2023, we are mailing letters to affected individuals and while, to date, ESO is unaware of any misuse of the involved information, as a precaution, we are offering complimentary credit monitoring and identity theft protection services to individuals whose Personal Identifiable Information (PII) may have been impacted. Each notification letter sent to impacted individuals will include a list of specific data elements that were impacted as well as resources that they may use to protect themselves.

If you received a letter, your information was determined to be involved in this incident. We recommend you take advantage of the resources we are offering. If you do not receive a notification letter in the coming days, that means that we have not identified you as being someone whose sensitive data was impacted by this incident.

What We Are Doing

Data security is one of our highest priorities. Upon discovery of the incident, we immediately secured our networks, implemented measures to confirm the security of our systems, safely restored our systems and operations via viable backups, initiated an investigation of the incident with the assistance of forensic experts, and notified the FBI (Federal Bureau of Investigation).

We value the safety of your personal information and want to make sure impacted individuals have the information they need to take steps to further protect their information, should they feel it appropriate to do so. We encourage all individuals to remain vigilant and to regularly review and monitor relevant account statements and credit reports and report suspected incidents of identity theft to local law enforcement, your state’s Attorney General, or the Federal Trade Commission (the “FTC”). We have included more information on these steps below.

We have also secured the deletion of all impacted data and taken all reasonable steps to prevent the data from being further published or distributed.

What You Can Do

Again, to help relieve concerns following this incident, we have secured the services of Kroll to provide identity monitoring at no cost to impacted individuals for <12/24> months. Kroll is a global leader in risk mitigation and response, and their team has extensive experience helping people who have sustained an unintentional exposure of confidential data.

As previously shared, we recommend impacted individuals take advantage of the resources we are offering. For all individuals, however, it is always a good idea to remain vigilant by regularly monitoring your account statements and credit history for any signs of unauthorized transactions or activity.

For More Information

Representatives are available to assist you with questions regarding this incident, between the hours of 9:00 a.m. to 6:30 p.m. Eastern Time, Monday through Friday, excluding holidays. Please call the help line at (866) 347-8525 with any questions you may have.

On behalf of ESO, please accept our sincere apology for this incident and any inconvenience it may cause you. We value the security of the protected health information and personal information that we maintain, and understand the frustration, concern, and inconvenience that this incident may have caused. We continue to build on our already substantial investments in cybersecurity to prevent an incident like this from reoccurring and protect the information entrusted to us now and in the future.



Source link

National Cyber Security

FREE
VIEW