Source 1 | 2024-10-31
“Six months after an employee opened a phishing email sent by ransomware gang Medusa, a Colorado-based pathology laboratory is notifying more than 1.8 million patients that their sensitive information was compromised - one of the largest breaches reported by a medical testing lab to U.S. federal regulators to date. “
“The lab, Summit Pathology Laboratories, said IT systems affected by the incident contained demographic and healthcare information, including names, addresses, medical billing and insurance information, diagnoses, dates of birth, Social Security numbers, and financial information. “
“The incident began in April when an employee clicked open a malicious email attachment, despite staff being provided "a gazillion" warnings and training, attorney Ellen Stewart of law firm Spencer Fane, which is representing the lab in the incident, told Information Security Media Group. The company then detected suspicious activity in its IT environment. “
“Summit Pathology as of Thursday is already facing eight proposed federal class action lawsuits filed in the past week centering on the breach, which the company reported to the U.S. Department of Health and Human Services on Oct. 18 as a hacking incident involving a network server. “
Cyber-Protecting Our Nation’s Critical Infrastructure
At SecuLore, our mission is to cyber-protect our nation’s critical infrastructure. Led by experts in 9-1-1 technology, cyberwarfare, and ethical hacking, our team provides the technology, expertise, and training needed to defend customers from increasingly sophisticated cyber threats.