Exploit: Ransomware
Company: Planned Parenthood
Industry: Healthcare, Non-Profit
Source: https://www.washingtonpost.com/nation/2021/12/01/los-angeles-planned-parenthood-hack/

An estimated 400,000 patients of Planned Parenthood had their information compromised by cybercriminals in what looks to be a ransomware attack. A Planned Parenthood Los Angeles spokesperson stated unauthorized network access was gained between October 9 and 17 as an undisclosed number of files were exfiltrated and malicious software was deployed.

Upon learning of the network intrusion, PPLA immediately acted by taking its systems offline. However, the threat actors were already able to install the ransomware payload and make off with the sensitive data.

After notifying law enforcement and working with third-party cybersecurity services, an investigation is underway. Thus far, the breach is said to have been limited to the Los Angeles affiliate and company officials are reassuring patients that there is no indication of the stolen information being “used for fraudulent purposes.”

The organization is letting patients know that compromised data includes names and “one or more of the following:” physical address, birth dates, medical information, insurance information, and prescription information.

Protect Your Business Against Modern Cyber Threats

More than ever, organizations of all sizes have been facing a historical rise in cyber attacks and data breaches. Talk to a cyber security expert today and find out how we can provide expert consulting and a portfolio of Cyber Security solutions designed to protect your organization against today’s most prevalent threats.