Lorien Health Services in Maryland announced that it was the victim of a ransomware incident in early June. Data was stolen and then encrypted during the incident.
Responsible for the attack are Netwalker ransomware operators, who leaked the information after Lorien refused to pay the ransom demand.
Social Security numbers accessed
A family-owned nursing home for the elders, Lorien Health Services runs nine locations in Baltimore, Carroll, Harford, and Howard counties, as well as a rehabilitation and fitness facility.
The company says that the incident was detected on June 6 and contracted services of cybersecurity experts to start an investigation and determine the impact.
After four days, the verdict was that personal information had been accessed by the hackers and it "may have included residents’ names, Social Security numbers, dates of birth, addresses, and health diagnosis and treatment information." Employee data was also accessed.
According to the breach notification sent to the Secretary of Health and Human Services, the number of impacted individuals is 47,754.
Although Lorien just announced the breach publicly, Netwalker operators made the incident known in mid-June, publishing screenshots of directory listings with 2020 date stamps and admission records as proof of compromise.
Netwalker leaks Lorien data
At the moment, some of the data has been dumped online. A password-protected archive of 147MB is currently available via a file-sharing service.
The hackers also published the unlock key for the archive and labeled this cache "Part 1," indicating that they may leak more data in the future.
Netwalker ransomware operation started under the name Mailto in October 2019 and rebranded in February this year.
Th ..
Support the originator by clicking the read the rest link below.
