9 months after the incident, the real scale of the leak finally became known.
A major health care provider in the U.S. state of Mississippi called Singing River recently reported that a cyberattack in August 2023 affected the data of 895,204 people. The medical network includes hospitals in Pascagoula, Ocean Springs, and Gulfport, as well as other health facilities in the region.
On August 19, 2023, the company announced that it was the victim of a sophisticated ransomware attack that resulted in hospital outages and possible data theft. At the end of August, the organization was added to the violations portal of the Office for Civil Rights of the US Department of Health and Human Services with a temporary number of victims — 501 people.
On September 13, 2023, it was confirmed that the data was stolen, and on December 18 of the same year, it was already reported that 252,890 people were affected by hacking. The last update provided to Maine State authorities a few days ago increased the number of victims to 895,204.
So, according to the notification of the State of Maine and the latest information on the Singing River website, among the leaked information were the following patient data::
The ransomware group Rhysida, known for its attacks on medical institutions, including children's hospitals, claimed responsibility for the attack. The attackers uploaded about 80% of the company's stolen data to the network, which includes 420,766 files with a total volume of 754 GB.
Victims are advised to use the security services offered as soon as possible, exercise caution when receiving unsolicited messages, and carefully monitor activity on all their accounts.
A major health care provider in the U.S. state of Mississippi called Singing River recently reported that a cyberattack in August 2023 affected the data of 895,204 people. The medical network includes hospitals in Pascagoula, Ocean Springs, and Gulfport, as well as other health facilities in the region.
On August 19, 2023, the company announced that it was the victim of a sophisticated ransomware attack that resulted in hospital outages and possible data theft. At the end of August, the organization was added to the violations portal of the Office for Civil Rights of the US Department of Health and Human Services with a temporary number of victims — 501 people.
On September 13, 2023, it was confirmed that the data was stolen, and on December 18 of the same year, it was already reported that 252,890 people were affected by hacking. The last update provided to Maine State authorities a few days ago increased the number of victims to 895,204.
So, according to the notification of the State of Maine and the latest information on the Singing River website, among the leaked information were the following patient data::
- Full name;
- Date of birth;
- Home address;
- Social Security Number (SSN);
- Medical information;
- Health information.
The ransomware group Rhysida, known for its attacks on medical institutions, including children's hospitals, claimed responsibility for the attack. The attackers uploaded about 80% of the company's stolen data to the network, which includes 420,766 files with a total volume of 754 GB.
Victims are advised to use the security services offered as soon as possible, exercise caution when receiving unsolicited messages, and carefully monitor activity on all their accounts.
