Healthcare

Hackers Extort Home Care Service Provider with Data Stolen in 2018 Breach

4 - 12 February 2019

CarePartners, a Canadian home care service provider, is still trying to contain the fallout from a data breach that took place in June 2018.
Cyber_News_Healthcare
CarePartners, a Canadian home care service provider, is still trying to contain the fallout from a data breach that took place in June 2018. The threat actor using the pseudonym "team_orangeworm" is selling the stolen data for 5 BTC (~US$17,000), which contain the company's financial documents and the full medical records of 80,000 patients. CarePartners has not confirmed or denied the extortion demand and has previously stated that only 627 patients and 886 employees were affected in the 2018 breach. The healthcare provider also did not confirm if the incident involved the hacker group Orangeworm, which has been targeting healthcare organisations in the US, Europe and Asia with the Kwampirs backdoor. 

References:
[1] “Team Orangeworm” Claims to be Dumping CarePartners’ Data from 2018 Breach
[2] Update: Hackers Release CarePartners Employees’ Wage Statements and Other Financial Files
 
 
 

More Weekly Cyber Newsanalysis and insights

Ensign Consulting

Enhancing your security posture, developing your cyber strategy, and designing your incident response plans.​

Ensign Solutioning

Architecting and implementing cybersecurity solutions that bolster defences

Ensign Managed Security Services

Managing your security operations for advanced threat detection, continuous monitoring, and triage services

Ensign Labs

Performing deep research to analyse vulnerabilities, deploy advanced threat hunting and provide cyber threat intelligence