Kentucky based Norton Healthcare reports data breach
Learn More
Kentucky-based Norton Healthcare, reported a significant data breach resulting from a ransomware attack that occurred in May. Norton Healthcare operates in over 40 clinics and hospitals, primarily in Greater Louisville, Southern Indiana, and throughout Kentucky.
The ransomware attack has been attributed to the ALPHV (BlackCat) group, a claim they made on their dark web site, alleging the theft of 4.7TB of data from Norton Healthcare's systems. This group also leaked several files online as proof, including some patients' Social Security numbers and bank statements.
The breach was first identified on May 9, 2023, prompting Norton Healthcare to inform federal law enforcement and engage a forensic security team to contain and investigate the breach. The investigation revealed that from May 7 to May 9, 2023, unauthorized access was gained to certain network storage devices. Fortunately, Norton Healthcare's medical records system and Norton MyChart were not compromised.
This incident compromised the personal data of patients, staff, and their dependents. Exposed data includes sensitive information such as:
- names,
- contact details,
- Social Security Numbers,
- birth dates,
- health and insurance information,
- medical ID numbers,
- inancial account details,
- government ID numbers,
- digital signatures.
The number of affected individuals is not disclosed.
Update - as of 11th December, Norton Healthcare is informing about 2.5 million individuals that their personal information was compromised.
Affected individuals will be provided with two years of free credit monitoring services and will receive detailed information in breach notification letters.
