Ascension Healthcare Hack Traced to Employee Downloading Malicious File
PCMag
|
Contributed by: Drex DeFord
Summary
The ransomware attack on Ascension, a major US healthcare provider, was traced to a malicious file downloaded accidentally by an employee, likely through a phishing email. The hacker group Black Basta is suspected to be behind the attack, utilizing spear-phishing techniques to deliver the malware. Although the breach led to the theft of files from seven servers, Ascension reports that no sensitive patient records within their Electronic Health Records (EHR) and other clinical systems were compromised. The hospital system is offering free credit monitoring and identity theft protection to potentially affected individuals, while continuing to investigate the full scope of the data breach.
