Kootenai Health Ransomware Attack: 464,000 Data Exposed


Kootenai Health, a prominent healthcare provider located at 2003 Kootenai Health Way, Coeur d’Alene, Idaho, has been the victim of a significant ransomware attack. The attack exposed sensitive information belonging to 464,088 patients.

The breach, which occurred on February 22, 2024, was discovered on August 1, 2024, by the Office of the Maine Attorney General, and has raised concerns over patient data security and privacy.

EHA

Free Webinar on Detecting & Blocking Supply Chain Attack -> Book your Spot

Details of the Breach

The breach was identified as an external system hacking incident, compromising personal identifiers and other sensitive information.

Todd Rowe, a partner at Constangy, Brooks, Smith & Prophete, LLP, and the Kootenai Health attorney, confirmed the breach.

The attack has affected 83 residents of Maine, prompting the healthcare provider to notify consumer reporting agencies as required by law.

Notification and Response

Kootenai Health began notifying affected individuals electronically on August 12, 2024. In response to the breach, the organization has offered 12 months of credit and CyberScan monitoring, a $1,000,000 insurance reimbursement policy, and fully managed identity theft recovery services to those impacted.

A sample consumer notification letter detailing the steps being taken to mitigate the risks associated with the data exposure has been made available to Maine residents.

The breach has sparked discussions regarding the security measures in place at healthcare institutions and the legal ramifications of such incidents.

This incident underscores the need for robust cybersecurity protocols in the healthcare sector to protect sensitive patient information from malicious attacks.

As Kootenai Health continues to investigate the breach, affected individuals are urged to remain vigilant and take advantage of the identity theft protection services offered. The healthcare provider is committed to enhancing its security measures to prevent future incidents.

Are you from SOC and DFIR Teams? Analyse Malware Incidents & get live Access with ANY.RUN -> Get 14 Days Free Acces



Source link