- BayMark Health Services confirmed having suffered a cyber attack in September 2024
- Criminals stole Social Security numbers, driver’s license numbers and more
- The company did not say how many people were affected.
BayMark Health Services, an American healthcare provider that helps people treat and recover from drug abuse and mental health issues, has confirmed that it suffered a cyberattack and lost confidential patient data.
In a filing with the California Attorney General, which includes a letter sent to affected people, BayMark said the attack occurred in September 2024, but did not indicate how many people lost their data:
“On October 11, 2024, we learned of an incident that disrupted operations of some of our IT systems. “We immediately took steps to protect our systems, launched an investigation with the help of third-party forensic experts, and notified authorities,” the breach notification letter reads. “Our investigation determined that an unauthorized party accessed some of the files on BayMark’s systems between September 24, 2024 and October 14, 2024. We then initiated a review and analysis of those files.”
RansomHub
The subsequent investigation, which concluded in early November, determined that the threat actors took Social Security numbers (SSN), driver’s license numbers, dates of birth, the types of services received, dates of service, insurance, treatment providers, and treatment/diagnosis data. More than enough for phishing, identity theft and other forms of cybercrime.
To mitigate the incident, BayMark is offering one year of Equifax identity monitoring services free of charge to affected patients.
Although the company did not mention who the attackers were, beepcomputer discovered that the ransomware gang RansomHub took responsibility and added BayMark to their data leak site. There, the bad actors said they stole 1.5TB of sensitive data, which they also uploaded to the leak site. This would mean that BayMark has most likely not paid the ransom demand.
RansomHub is a relatively young ransomware operation that emerged after the infamous ALPHV group stole $22 million from ChangeHealthcare and disappeared.
Through beepcomputer
