On December 18, 2023, SRHS confirmed the breach compromised information of 252890 sufferers, all of whom had been notified via mails on January 12, 2023. Related notifications had been despatched on Could 13, 2024, this time to the 25 Maine sufferers, confirming the brand new estimate.
“By means of the investigation, Singing River recognized unauthorized entry inside its atmosphere between August 16 and August 18, 2023,” SRHS mentioned within the discover. “Though we now have no indication of any misuse of your private info because of this occasion, out of an abundance of warning, we’re offering discover to people who could have been impacted.”
The assault was claimed by the Rhysida ransomware gang, a infamous risk group that has hacked different healthcare programs together with the Lurie Youngsters’s Hospital and Prospect Medical Holdings — though its targets have additionally included academic establishments, manufacturing trade, and the Chilean military, in accordance with a report by the HHS Well being Sector Cybersecurity Coordination Heart.
Breached information embrace affected person well being info
The breach compromised private in addition to well being information of Singing River sufferers, together with identify, date of start, handle, Social Safety quantity, medical info, and well being info.
“Singing River has no proof that any of your info was used for id theft or fraud,” the corporate mentioned within the discover. “We encourage probably impacted people to stay vigilant towards incidents of id theft and fraud by reviewing their accounts, explanations of advantages, and credit score studies for suspicious exercise, and to report any suspicious exercise to the affiliated establishments instantly.”
Nevertheless, in accordance with a report by Bleeping Pc, the Rhysida group has launched 80% of the info it holds from the SRHS breach, which included a over 420,000 recordsdata amounting to greater than 754 GB of information.
