U.Ok. healthcare big HCRG Care Group has confirmed it’s investigating a cybersecurity incident after a ransomware gang claimed to have breached the corporate’s programs to steal troves of delicate information.
HCRG Care Group is likely one of the largest unbiased suppliers of neighborhood well being and care companies in the UK. The group, beforehand generally known as Virgin Care and now owned by Twenty20 Capita, companions with Nationwide Well being Service trusts and native authorities across the U.Ok. to ship healthcare companies, together with pressing care, sexual well being, and grownup and baby social care companies.
HCRG was this week listed on the darkish net leak website of the prolific Medusa ransomware group, which claims to have compromised the corporate to steal greater than two terabytes of information.
Samples of the allegedly stolen information shared by Medusa and seen by information.killnetswitch seem to incorporate workers’ private info, delicate medical data, monetary data, and authorities identification paperwork, equivalent to passports and beginning certificates.
HCRG spokesperson Alison Klabacher instructed information.killnetswitch in an emailed assertion that the corporate is “at present investigating an IT security incident” and has “not too long ago recognized a submit on the darkish net by a bunch claiming accountability.”
The corporate declined to say what sorts of information had been accessed however didn’t dispute Medusa’s claims. HCRG additionally declined to say what number of people are affected. In response to the corporate’s web site, HCRG has greater than 5,000 workers and delivers healthcare companies to half one million sufferers throughout the UK.
“Our crew has not noticed any suspicious exercise because the implementation of rapid containment measures, and we’re working with exterior forensic specialists to research the incident, the spokesperson stated.
HCRG stated it knowledgeable the U.Ok.’s Data Commissioner’s Workplace and different regulators concerning the breach.
“Our companies are persevering with to function and safely see sufferers, and people with appointments or who must entry our companies ought to proceed to take action,” the corporate stated.
The Medusa ransomware group is threatening to publish the allegedly stolen information until HCRG pays the gang a ransom demand of $2 million.
HCRG wouldn’t verify the way it was compromised, however Medusa is thought to take advantage of unpatched vulnerabilities in distant desktop software program.
