Privacy & Security

Two providers forced to pay up in ransomware attacks

New Jersey Spine Center was attacked by Cryptowall, which locked up its EHR, backups and phone system. Marin Healthcare District in California lost two weeks of backup data during restoration.
By Jessica Davis
October 05, 2016
11:08 AM

Two more ransomware attacks have been reported recently: Marin Healthcare District in Greenbrae, California and the New Jersey Spine Center in Chatham, N.J. Both organizations paid the ransom.

The attack on MHD stemmed from a ransomware attack on Marin Medical Practices Concepts, the health system's medical billing and electronic medical record services vendor. The breach occurred on July 26.

MHD reported the attack on September 28, when it notified its 5,000 patients some of their medical data was lost during the attack. According to officials, Marin providers were unable to access patient data for more than a week. The computer systems are back online, but the provider lost two weeks of backup data.

A third-party forensic investigation determined there was no evidence patient data, including financial and health information was accessed. However, officials said due to a failure in MMPC's backup systems during restoration, patient data collected at MHD's nine medical centers between July 11-26 was lost. Diagnostic test results weren't lost, and patients don't need to be re-tested.

MMPC's CEO Lynn Mitchell told the Marin Independent Journal that the ransom was paid, but said the amount will not be disclosed.

[Also: Ransomware attack on Urgent Care Clinic of Oxford, purportedly caused by Russian hackers]

Meanwhile, the six sites of the New Jersey Spine Center were attacked by Cryptowall ransomware on July 27, 2016. It encrypted not only the electronic health record, but also the backup files and phone system. According to officials, the antivirus software detected the virus only after the ransomware was installed.

Hackers likely gained access through a list of stolen passwords run by an automated program. As the organization's backup files were inaccessible and there's currently no decryptor for this ransomware variant, officials said there was no alternative but to pay the cybercriminals. The amount paid wasn't disclosed.

Some 28,000 patients were affected by the breach, according to the breach report sent to the Department of Health and Human Services' Office for Civil Rights. The FBI and local authorities were also notified of the breach.

Officials said there is no evidence that suggests patient data like Social Security numbers, credit card data and medical history was stolen, but there's no way to rule out unauthorized access. The organization is offering patients one year of free credit monitoring.

Twitter: @JessieFDavis
Email the writer: jessica.davis@himssmedia.com

Like Healthcare IT News on Facebook and LinkedIn

Topics: 
Cloud Computing, Data Warehousing, Electronic Health Records (EHR, EMR), Network Infrastructure, Privacy & Security

More regional news

HIMSSCast logo

HIMSSCast: Caregiver input needed for allocation of investment dollars

By
Bill Siwicki
November 15, 2024
HHS Building

Trump picks RFK Jr. to lead HHS

By
Susan Morse
November 15, 2024
Sign outside FDA office

Lawmakers ask CDRH to revisit its CDS guidance

By
Andrea Fox
November 15, 2024
Want to get more stories like this one? Get daily news updates from Healthcare IT News.
Your subscription has been saved.
Something went wrong. Please try again.

Top Story

Former Georgia Rep. Doug Collins
Trump taps former Rep. Doug Collins to head VA

Most Read

Atrium Health responds to new social engineering attack
Epic and Oracle Health sign on to Veteran Interoperability Pledge
Vendor Notebook: New cybersecurity and EHR performance upgrades 
What providers need to know about ambient voice and EHR usability
HMIS integration with other public HIS sought and more India briefs
Particle Health files antitrust suit against Epic

Research

White Papers

More Whitepapers

Patient Engagement
Patient Engagement
Financial/Revenue Cycle Management

Webinars

More Webinars

Imaging
Interoperability
Artificial Intelligence

Video

Lee Kim at HIMSS_Global Health Equity Week 2024
AI can be leveraged to improve cybersecurity and health equity
Dr. Keisuke Nakagawa at UC Davis Health_Global Health Equity Week 2024
How artificial intelligence is changing the equation for SDOH integration
Andrea Hsu at National Science and Technology Council_HIMSS24 APAC
Fostering health IT innovation through academic-industrial collaborations
Valerie Rogers at HIMSS_Global Health Equity Week 2024
Technology and policy have a role to play in improving maternal health

More Stories

HIT professional reviews information on a laptop outside a server room
ASPR seeks feedback on public health orgs' cybersecurity needs
Gabriel Jones of Proprio on AI
Artificial intelligence is enabling big advances in surgery
Pharmacist sorting pills
Deploy RFID technologies to streamline controlled substance management
Healthcare workers in a meeting
Prioritizing cost management at U.S. healthcare systems: Keys to better margins
Healthcare worker looking at medical record on tablet with patient in background
Protect your IoMT devices against evolving cyberattacks
Jill Brewer at HIMSS_Healthcare Cybersecurity Forum 2024
What's the weakest link in organizational cybersecurity? Not what you might think
Richard Staynings at the University of Denver_Healthcare Cybersecurity Forum 2024
The challenges of safeguarding healthcare's 'data ocean'
Avihai Sodri of Antidote Health on telemedicine
How virtual-first can improve outcomes and make care more affordable