Health plan benefit numbers, medical record numbers, names, addresses, telephone numbers, dates of birth, social security numbers and various financial information were all exposed during Personal Touch’s Ransomware attack. In a breach notification, it was disclosed over 750K patients had their information accessed in some form.

Although the ransomware strain has not been identified, it’s evident ransomware operators have an urge to target healthcare facilities based on the abundance of information they can exfiltrate. The main factor in this attack, however, what allowed it to happen, is the exploitation of the cloud.

While moving to the cloud can be beneficial for organizations, security protocols must be reviewed constantly. Threat actors are aware of the changes your business will make in efforts to be secure, so they’ve changed their processes to include an exploitation of cloud infrastructures.

If your organization is like many others, there is a good chance a third-party vendor is providing services. This will broaden your attack surface, so involving a security firm to monitor all of these different connections and relationships will be immensely valuable for your team.

When you engage with a security firm such as SpearTip, the active auditing on your security protocols is the best way to strengthen your security posture. The engineers in our Security Operations Center will continuously monitor networks and offer knowledge on how to enhance your overall security.

Negative press is sure to follow a breach where your customers or patients’ data is leaked on the dark web. Integrate SpearTip’s certified engineers to monitor your environment and stay off the front page.

SpearTip’s cyber experts continuously monitor environments 24/7 in our US based Security Operations Center. Our certified engineers work in unison with our proprietary endpoint detection and response tool, ShadowSpear®. This allows your organization to have a direct communication with our engineers at any moment and a completely transparent view of your risk profile.

If you think your organization has been breached, call our Security Operations Center at 833.997.7327.