New York-based emergency medical services provider Empress EMS confirmed suffering a data breach impacting nearly 319,000 individuals following a ransomware attack in July, reports BleepingComputer.
Empress EMS had its systems infiltrated by attackers on May 26, with "a small subset of files" exfiltrated on July 13 and encryption following the day after, according to an investigation on the case.
"Some of these files contained patient names, dates of service, insurance information, and in some instances, Social Security numbers," said Empress EMS in a disclosure. In a notification sent to the Department of Health and Human Services, Empress EMS noted that 318,558 people had their data compromised as a result of the incident.
While the ransomware group behind the intrusion has not been named by Empress EMS, the Hive ransomware gang was discovered to have added a non-public entry for the emergency services provider on July 26.
Further evidence on the involvement of Hive ransomware in the form of conversations with Empress EMS, as well as stolen data samples, has also been published by DataBreaches.net.
Ransomware, Data Security, Privacy
Ransomware attack at NY emergency service prompts data breach
An In-Depth Guide to Ransomware
Get essential knowledge and practical strategies to protect your organization from ransomware attacks.
Related Events
Get daily email updates
SC Media's daily must-read of the most current and pressing daily news
You can skip this ad in 5 seconds