The ALPHV/BlackCat ransomware group has claimed responsibility for hacking the Morrison Community Hospital and adding it to its dark web Tor leak site. The group asserts that it has stolen approximately 5TB of data, including patient and employee information, backups, and personally identifiable documents, among other sensitive data.
In an attempt to pressure the hospital, the group has started contacting journalists, and it threatens to initiate patient calls shortly. This incident adds to the growing number of ransomware attacks targeting healthcare organizations in the United States, where data theft has become increasingly common.
Brett Callow, a noted researcher, reported that this year has witnessed 29 US health systems, comprising 90 hospitals, being affected by ransomware attacks, with at least 23 of them reporting data theft. In September, the LockBit ransomware group targeted two hospitals in New York, the Carthage Area Hospital and the Clayton-Hepburn Medical Center.
Notably, LockBit and its affiliates have previously attacked healthcare organizations, despite the group’s policy prohibiting such actions. In response to violations, the group has taken punitive measures against errant partners. These incidents underscore the ongoing threats to healthcare institutions, raising concerns about data security and patient privacy. The systems at three hospitals and other medical facilities operated by Singing River Health System were hit by a cyber attack at the end of August.