Privacy & Security

Ransomware attack on Urgent Care Clinic of Oxford, purportedly caused by Russian hackers

The breach occurred in early July and was discovered in August. Currently, the clinic’s computer system is up and fully operational.
By Jessica Davis
October 04, 2016
01:59 PM

Oxford, Mississippi-based Urgent Care Clinic of Oxford reported it was a victim of a ransomware attack, which appears to have been initiated by Russian hackers. The breach was discovered in August 2016, occurred at sometime in early July of 2016 and was announced Friday.

Urgent Care staff noticed the server running slowly on Aug. 2. The server was held for ransom for an undisclosed amount of time before control was returned to the clinic, according to officials. The clinic shut down the server’s remote access to prevent anyone outside of the clinic from again accessing the system.

The FBI was contacted and the incident is still under investigation. Urgent Care sent letters to the last known address of every patient in its system. At the moment, there is no final tally on how many patients were affected by this breach.

Urgent Care also hired a forensic analyst to determine the source of the hack and the exact information that was breached. The investigation proved it’s 'very likely' the attack was carried out by Russian hackers, who gained access to patient data including names, social security numbers, dates of birth, health data and other personal information.

[Also: Russian hackers hit DoD: PHI at risk?]

The cyberattack affected the personal information of both former and current patients, officials said. However, "unfortunately, we cannot say which patients specifically may have been affected by this data breach."

The clinic’s computer system is up and fully operational, according to officials.

Officials have asked any patients of the clinic prior to August 2, 2016 to read the notice regarding the breach. Urgent Care is offering one year of free credit monitoring and recommends all patients regularly check all credit card and bank account information for any suspicious activity.

"We understand this may pose an inconvenience to you, and we sincerely regret that this situation has occurred," officials said. "Urgent Care is committed to providing quality care and service to all its patients and that includes keeping your personal information as safe and secure as possible."

Twitter: @JessieFDavis
Email the writer: jessica.davis@himssmedia.com

Like Healthcare IT News on Facebook and LinkedIn

Topics: 
Data Warehousing, Electronic Health Records (EHR, EMR), Network Infrastructure, Privacy & Security

More regional news

Rebecca Herold from the IEEE on AI and cybersecurity

IEEE deep dive: What you really need to know about AI and cybersecurity

By
Bill Siwicki
October 17, 2024
Female doctor with headset smiles on a telehealth visit

As year-end deadline looms, Congress again calls on DEA to extend telehealth flexibilities

By
Andrea Fox
October 16, 2024
Dr. Michael Poku of Equality Health on value-based care

A value-based care 'enabler' explains its successful model

By
Bill Siwicki
October 16, 2024
Want to get more stories like this one? Get daily news updates from Healthcare IT News.
Your subscription has been saved.
Something went wrong. Please try again.

Top Story

Rebecca Herold from the IEEE on AI and cybersecurity
Cybersecurity In Focus
IEEE deep dive: What you really need to know about AI and cybersecurity

Most Read

Alfred Health onboards cancer records to Oracle EHR
Carequality to align interoperability strategy with TEFCA
Finding efficiencies and improving care: Give your healthcare surveillance a clean bill of health
Northwestern Medicine integrates DAX Copilot with Epic, seeking workflow efficiencies
Keep patients digitally empowered and engaged in their care
HITRUST unveils new tool for AI risk management

Research

White Papers

More Whitepapers

Interoperability
Patient Engagement
Interoperability

Webinars

More Webinars

Interoperability
Artificial Intelligence
Artificial Intelligence

Video

Dr Somkid Udomkijmongkol at Princ Hospital Suvarnabhumi_HIMSS24 APAC
Princ Hospital Suvarnabhumi eyes AI, telemedicine adoption
Renato Umeton at Dana-Farber Cancer Institute_AI in Healthcare Forum 2024
Dana-Farber created a secure testing environment for nonclinical LLMs
Hyungjin Rhee at Yonsei University College of Medicine_HIMSS24 APAC
Severance Hospital to pilot LLM on HIS
Steen Strand at Emteq Labs_Footage and still image Courtesy of Emteq Labs
Eyewear that senses emotions grabs facial data

More Stories

Hospital administrators in an office meeting
Te Whatu Ora may further cut digital funding
Krishna Duarsa at the Kasih Ibu Hospital Group_HIMSS24 APAC
Bali hospital takes on EMR maturity
Couple holding baby
Owlet wins back compliance with NYSE continued listing standards
David P. Tusa of MD Home Health on RPM
Arizona agency's omnichannel approach to home health includes telehealth and RPM
Hands holding puzzle pieces
AHA concerned over HTI-2 timelines, 'burdensome' requirements
Stethoscope on tablet
HIMSSCast: Is private equity the bad guy in healthcare?
Zafar Chaudry at Seattle Children_Data blocks concept Photo by BlackJack3D1/E+/Getty Images
CIO Spotlight: Zafar Chaudry of Seattle Children's
Monief Eid, senior consultant for the Ministry of Health Saudi Arabia, at HIMSS24 APAC
Building 'solid' medical data exchange...