Privacy & Security

Colorado medical group hit by 2 cyberattacks in a single week

While Longs Peak Family Practice was investigating a Nov. 5 ransomware attack, its infosec team discovered another hack into its system on Nov. 10.
By Jessica Davis
December 28, 2017
11:28 AM

Hackers hit Colorado-based Longs Peak Family Practice with ransomware on Nov. 5 and once again with a second cyberattack on Nov. 10.

The Longmont provider discovered the first “suspicious activity” on its network and determined a hacker was in the system. After launching an investigation, its team was unable to secure the network before the hacker executed malicious ransomware code onto the system.

Officials said certain files were encrypted by the virus, but they were able to rebuild and restore system files from a separate, secure backup.

[Also: The biggest healthcare breaches of 2017]

Then the investigation found a second hack into the network within a week -- separate from the ransomware incident. Investigators promptly hired a forensic computer firm to help with the investigation and restoration, which concluded on Dec. 5.

Investigators found unauthorized access into its system on three separate occasions.

“We didn’t find evidence of any patient files being opened on the computers,” officials said in a statement. “Because some of the software installed by the hackers could have been used to download computer files and some files were encrypted, we can’t be sure health information wasn’t compromised.”

[Also: New cybersecurity threats unwrapped: Hidden Cobra, public safety apps, Western Digital My Cloud]

The potentially compromised files contained patient identification numbers, Social Security numbers, dates of birth, addresses, phone numbers, email addresses, insurance information, driver’s licenses, dates of services, clinical data and copies of provider notes. No financial data was contained in the files.

Longs Peak has since changed network access privileges and upgraded its firewall. Officials said they are currently analyzing network monitoring tools and procedures to prevent future attacks. Further, the provider is reinforcing and retraining its workforce.

Both hacking incidents were reported to law enforcement. The breach has not yet been added to the U.S. Department of Health and Human Services’ Office of Civil Rights’ breach reporting tool. All impacted patients are being offered a year of free credit monitoring.

Twitter: @JessieFDavis
Email the writer: jessica.davis@himssmedia.com

Topics: 
Privacy & Security

More regional news

artist's take on AI represented by Tetrix-like cubes in a 3D tower

Republicans want changes from HHS on AI assurance labs

By
Andrea Fox
December 03, 2024
Healthcare workers meeting with administrators

Analyzing user behavior and content across all channels can help defend data

December 03, 2024
A doctor reviewing a patient's record on a digital tablet

National Healthcare Group adopts mobile-first HR approach

By
Adam Ang
December 02, 2024
Want to get more stories like this one? Get daily news updates from Healthcare IT News.
Your subscription has been saved.
Something went wrong. Please try again.

Top Story

Dr. Joseph Sassine of University of Oklahoma College of Medicine on RTM
Success Stories & ROI
Remote therapeutic monitoring reduces readmissions, academic research shows

Most Read

OCR fines Providence $240,000 in ransomware case
Cybersecurity leaders still shaky about post-attack recovery, reports show
Australia names new health cybersecurity chief
Health systems' websites still face uncertain regulatory terrain 
Cybersecurity budgets are increasing – but attack disruptions are too
Epic and Particle Health continue to spar over data exchange dispute

Research

White Papers

More Whitepapers

Patient Engagement
Patient Engagement
Financial/Revenue Cycle Management

Webinars

More Webinars

Imaging
Interoperability
Artificial Intelligence

Video

Yuriy Kotlyar at American Health Connection_Illustration of call center workers by Iryna Alekseienko/iStock/Getty Images Plus
Call centers can help drive improved revenue cycle performance
Ian Mack at the University of Virginia_Healthcare Cybersecurity Forum 2024
How local cybersecurity efforts can build from national standards
Shana Hoffman at Lucet_Hands holding paper head and brain Photo by BeritK/iStock/Getty Images Plus
Behavioral health access still poses challenge
Dr Yongsuk Kim at Konyang University Hospital_HIMSS24 APAC
How AI drives a Korean research-centred hospital

More Stories

Dr Yongsuk Kim at Konyang University Hospital_HIMSS24 APAC
How AI drives a Korean research-centred hospital
The U.S. Capitol, Washington, D.C.
Senators intro bipartisan bill to bolster healthcare cybersecurity
HHS building
OCR's HIPAA audit program lacked mettle, OIG says
Anahi Santiago at ChristianaCare_Healthcare Cybersecurity Forum 2024
CISO's tips for building a culture of cybersecurity
Two medical researchers in a lab look at information on a laptop
New NIH tool uses genAI to connect volunteers with clinical trials
Paul Wilder at CommonWell Health Alliance_Part 2_Digital binary code with springing lock Photo by JuSun/iStock/Getty Images Plus
Notching up FHIR at scale - Part 2
A pharmacist doing an inventory using a digital tablet
Singapore General Hospital developing AI to prevent...
View of Mount Sinai Health System buildings in Manhattan
Mount Sinai Health announces new Center for AI and Human Health