Morrison Community Hospital hacked by AlphV ransomware gang

The ALPHV/BlackCat ransomware group reported that it successfully breached the security of Morrison Community Hospital, and as part of their malicious activities, they have included this breach on their dark web Tor leak site.

The group asserts that it managed to exfiltrate a substantial amount of sensitive data, totaling 5 terabytes, which encompasses information related to both patients and employees of the hospital.

This stolen data includes

• backups,
• personally identifiable information (PII) documents,
• various other types of confidential records.

To substantiate their claim, the ransomware group has releases a sample of the data as evidence.

Alleging that the representatives of Morrison Community Hospital have not provided a clear and satisfactory response to their breach, the Alphv gang has initiated contact with journalists and explicitly stated their intent to take further actions, such as initiating contact with patients affected by the breach.

Update - On 28th of October, BlackCat released a significant amount of data, including 8.6 TB of VMWare VM images and passwords from MCH employee browsers. On 12th of December the Hospital reported that the data breach affected 122,488 patients.