Attacks on the healthcare sector continue, but as this blogger observed in reporting on hacks by thedarkoverlord, it’s often the attackers who first reveal the breaches while the victims may not even reply to inquiries. AffordaCare Urgent maintenance Clinic is a walk-in urgent charge clinic network in tx that advertises that they can provide charge for most common illnesses and minor injuries. They also have x-ray and diagnostic capabilities. AffordaCare has clinics in ii locations in Abilene, ace in Early, one in Stephenville, single in Wichita Falls, and one in Big Spring, Texas. It appears that on february 1, AffordaCare was attacked by maze Team, who exact to have exfiltrated more than 40 GB of data, including protected health information. According to the hackers, when AffordaCare didn’t pay the demanded ransom to get a decryption key and to deter the attackers from publicly dumping the stolen data, Maze team added the clinic to its website where it names its victims who are not cooperating with ransom demands. For an update on Maze Team’s activities, check our additional reporting today. As it has done in other cases, Maze team provided samples of the data they had stolen. The publicly available files included patient insurance exact forms, workers compensation documentation, employee payroll information, and other files. DataBreaches.net has redacted a few of them, below, but the files in the data wasteyard contained patients’ full names, Social Security number, date of birth, diagnosis code, handling code, patient direct and phone number, relevant medical history and reason for visit, billing information, and indemnity policy information among the data types. Not all patients had all these types of information in their exposed files. If you were a patient at an AffordaCare urgent guardianship center in Texas prior to february 1, 2020, have you received any notice of any breach? Have you recently turn a victim of hoax or identity theft? We’d love to hear from you. AffordaCare did not respond to inquiries sent to the site about the attack. They uphold to update their Facebook account without making any name at all of a privacy incident. Nor does the breach appear on their website or on HHS’s public transgress creature at the time of this publication. With multiple locations, this breach may easily have compromised thousands of patients’ protected health information. We’ll have to wait and assure if AffordaCare discloses this publicly and reports it to HHS within the 60 day window. But AffordaCare is not the only urgent aid clinic that this site is watching for follow-up. DataBreaches.net was also recently made aware of another urgent upkeep snapper that also appears to make been attacked. Advanced Urgent care of the fl Keys Advanced Urgent care of the fl Keys. Upon discovery of another urgent attention facility beingness attacked, DataBreaches.net reached out to Maze team to ask whether this center was also one of their victims. Maze Team replied that this was not their attack. We mightiness live more about this one if it had been by maze Team, as we currently have very little info on this attack. data from the tone-beginning was posted on a Russian-language forum in a thread that translates to “Malicious Defaulters.” From that subject demarcation and a notice by the poster that Advanced Urgent care of Florida Keys “refuse to pay,” it sounds like a ransomware attack, but that has yet to be confirmed. The poster added, “dump of their server, maybe someone will happen something useful” (Google translation). The data, made freely available on a popular file-sharing site, contained more than 14,000 patients’ personal information. For some of the patients, there were numerous scans of patient records. In most cases, these were scans of reports that included some handwritten notes and results with the patients’ personal information, medical history, reason for testing or visit, and more. As with the Texas group, the Florida practice’s wasteyard contained a wealth of protected health information as well as billing information. one of the folders contained spreading sheets listing patient first and last names, phone numbers, email addresses, and co-pay status on bills. Other “export” scatter sheets listed patients by their medical register numbers but listed their insurer, engagement of service, diagnosis (in text, not coded number), CPT code, and info on co-pay, etc. Advanced Urgent care of the Florida Keys was sent several inquiries about the attempt and data dump but did not reply at all. Based on the timestamps and filenames, the data appear to have been exfiltrated on or about march 1 of this year, so this is a recent onset and we may not see any mark or submission on HHS’s public breach tool for a while.