Pharmacy big Ceremony Assist confirmed a data breach after struggling a cyberattack in June, which was claimed by the RansomHub ransomware operation.
Ceremony Assist is the third-largest drugstore chain in the USA, using over 6,000 pharmacists (out of a complete workforce of over 45,000) in additional than 1,700 retail pharmacy shops throughout 16 states.
The corporate informed BleepingComputer on Friday that it is at present investigating a cyberattack detected in June and dealing on sending data breach notifications to clients affected by the ensuing data breach.
It additionally added that it had restored all programs compromised within the incident with the assistance of exterior specialists it employed to deal with the assault’s influence.
“Ceremony Assist skilled a restricted cybersecurity incident in June, and we’re finalizing our investigation. We take our obligation to safeguard private data very critically, and this incident has been a prime precedence,” Ceremony Assist mentioned.
“Along with our third-party cybersecurity companion specialists, we have now restored our programs and are absolutely operational. We’re sending notices to impacted shoppers.”
Whereas Ceremony Assist did not share what buyer knowledge was accessed within the breach or what number of people had been affected, it mentioned that the data breach would not influence well being or monetary data.
“Within the meantime, we will affirm that no social security numbers, monetary data, or affected person data had been impacted by this incident,” the corporate added.
Attack claimed by RansomHub gang
Regardless that Ceremony Assist has but to share who was behind the June assault, the assertion got here after BleepingComputer reached out to verify the RansomHub ransomware gang’s claims that it breached the pharmacy big’s programs and stole clients’ knowledge.
”Whereas accessing the Riteaid community we obtained over 10 GB of buyer data equating to round 45 million traces of individuals’s private data. This data consists of title, deal with, dl_id quantity, dob, riteaid rewards quantity,” the menace group mentioned on their darkish internet leak web site.
After including Ceremony Assist to its leak web site as a result of the corporate supposedly stopped negotiating a ransom, the ransomware gang shared a screenshot of a few of the allegedly stolen knowledge as proof, saying that the whole lot could be leaked in two weeks.
Ceremony Assist did not reply to a request for extra particulars relating to the June assault after BleepingComputer reached out once more right now.
RansomHub is a comparatively new menace group that calls for ransom funds from victims in alternate for not leaking stolen information, typically auctioning the information to the very best bidder if negotiations fail.
They concentrate on data-theft-based extortion relatively than encrypting information, though they had been recognized as a possible purchaser of Knight ransomware supply code.
Final month, RansomHub claimed duty for breaching the programs of U.S. telecom supplier Frontier Communications in April, forcing them to close down programs to comprise the breach and stealing the knowledge of 750,000 clients.
