According to sources, Wright & Filippis (a Medical organization in Michigan) was hit with a cyber attack. It was first reported on 2022-11-20.

If You're in Michigan, You're at Increased Risk

Cybersecurity for Medical

Manage your organization’s attack surface with SecuLore’s 24/7 network monitoring services.

  • 24/7 Threat Monitoring

  • Automated & AI Threat Detection

  • Proactive Threat Hunting

  • Incident Response & Remediation

  • Forensics & Root Cause Analysis

Source 1  |  2022-11-20

Michigan prosthetics and orthotics provider discloses ransomware attack back in January

“Wright & Filippis, a well-known orthotics and prosthetics provider in Michigan, issued a press release yesterday about a cyberattack between January 26 and January 28, 2022. While the press release is not specific about the nature of the attack, a companion FAQ indicates that the attack resulted in the deployment of ransomware. Wright & Filippis claims that their endpoint security detected and terminated the ransomware shortly after it was executed.“

“Although their electronic medical record system was not impacted, there was reportedly some unauthorized access to files with patient and employee information. For current and former patients, the types of information include name, date of birth, patient number, social security number, financial account number, and/or health insurance information. For current or former employees or job applicants, the types include name, date of birth, social security number, driver’s license number or state ID, and a financial account number in limited instances.“

“To help prevent another incident, the firm has also implemented a series of cybersecurity enhancements, “including installation of additional endpoint detection and response software, resetting all passwords, and rebuilding affected servers.” Neither the press release nor their website FAQ indicates how many people have been notified of this incident, and no report has yet appeared on HHS. But given that this ransomware incident occurred back in January, did it ever show up on any dedicated leak sight? Wright & Filippis’s statements are silent on the issue of whether there was a ransom demand and if so, whether they paid ransom. DataBreaches sent an email inquiry to Wright & Filippis posing four questions: What group attacked them? Did they negotiate any ransom demand(s) at all? Were any data irretrievably lost or corrupted by any encryption? Did any employee or patient data ever show up on any dark web leak site?“

Guarding Against Ransomware

  • August 16, 2023

    Ransomware is on the Rise Again: Defense Against New Players

  • November 9, 2022

    Ransomware’s Hidden Costs: What You Need To Know

  • August 11, 2021

    How to Prevent and Respond to Ransomware Attacks

  • January 25, 2017

    How to Defend Public Safety from Ransomware

Cybersecurity for Critical Infrastructure

SecuLore provides Managed Detection and Response (MDR) to protect our nation’s critical infrastructure from cyber threats. Our expertise is built on deep knowledge of 9-1-1 technology, cyberwarfare, and ethical hacking, ensuring the highest level of cybersecurity for public safety agencies.

  • 24/7 Vulnerability & Threat Monitoring

  • Automated & AI Threat Detection

  • Specialized Threat Intelligence

  • Proactive Threat Hunting

  • Incident Response & Remediation

  • Forensics & Root Cause Analysis