Texas-based care supplier HMG Healthcare has confirmed that hackers accessed the non-public knowledge of residents and workers, however says it has been unable to find out what kinds of knowledge have been stolen.
HMG Healthcare is headquartered in The Woodlands, Texas, and offers a spread of providers, together with reminiscence care, rehabilitation, and assisted dwelling. HMG’s web site says it employs greater than 4,100 individuals and serves roughly 3,500 sufferers, producing greater than $150 million in annual revenues.
In a discover printed on its web site, HMG chief government Derek Prince confirmed that hackers in August accessed a server storing “unencrypted recordsdata” containing delicate data belonging to sufferers, workers, and their dependents. HMG mentioned it realized of the breach months later in November.
HMG mentioned the stolen data “probably contained” private data, together with names, dates of delivery, contact data, Social Safety numbers, and information associated to employment; in addition to medical information, basic well being data, and data relating to medical remedy, based on the discover. HMG additionally mentioned that the discover has been printed as a way to inform “people for whom HMG has inadequate or out-of-date contact data” concerning the incident, suggesting historic affected person knowledge might have been impacted.
Nevertheless, HMG admits that whereas it tried to determine the precise knowledge that was compromised, “we’ve got now decided that such identification just isn’t possible.”
It’s not but identified why HMG couldn’t decide the kinds of knowledge stolen, and an organization spokesperson didn’t reply to information.killnetswitch’s questions.
HMG didn’t say in its discover what number of people are regarded as affected by the breach. Nevertheless, a submitting with the Texas legal professional basic submitted by HMG on Monday confirms that roughly 75,000 Texans have been impacted by the breach; although it’s not identified what number of non-state residents are affected.
HMG didn’t describe the character of the cyberattack, however famous that “HMG labored diligently to make sure that the stolen recordsdata weren’t additional shared by the hackers to different sources.” It’s not unusual for company victims of ransomware assaults to pay hackers a ransom demand in an effort to restrict the unfold of stolen knowledge, regardless of having no ensures that the hackers would preserve their finish of the deal.
information.killnetswitch requested HMG if it had paid a ransom to the hackers.
HMG CEO Prince famous that the group has “elevated its knowledge security protocols” in mild of the incident, however didn’t specify what further security steps have been taken.
