Hack Notice

Hack Notice: Woodcreek Provider Services notifies more than 210,000 patients of Netgain ransomware incident

Woodcreek Provider Services notifies more than 210,000 patients of Netgain ransomware incident

backrest in January, this site noted that a ransomware tone-beginning on Netgain Technology had impacted Ramsey County. Previous coverage of the Netgain assail had reported that Netgain had stated that they were victims of a ransomware onslaught on november 24th, 2020 and On december 4th, customers began receiving emails from Netgain stating that they may experience “system outages or slowdowns” due to a cyberattack on the hosting provider. Now it appears that not everybody was notified on december 4 and the breach was much bigger than we may have thought. On February 17, external counsel for Woodcreek provider Services provided a detailed letter to washington state’s attorney general. That statement reported that on January 4, 2021, Woodcreek Provider Services was notified that Netgains systems had been compromised, but the impact on Woodcreek provider Services data was unknown. Additional details about the incident were provided on January 14, 2021. At that time, Netgain reported a security incident that involved unauthorized access to portions of the Netgain environment which Netgain had discovered in late November 2020 but may have occurred as early as September 2020. According to the letter from Barbra Nault of Studebaker|Nault, the terror actors reportedly deployed the ransomware on december 3, and data from Woodcreek was exfiltrated prior to that deployment. Of note, Netgain reportedly paid the threat actors and recovered Woodcreek provider Services information. The type of ransomware and the amount of the payment were not disclosed, but advocate for Woodcreek wrote that Netgain had received assurances that the attackers deleted the data and did not retain any copies. Netgain reported that through law enforcement channels and its cybersecurity experts engagements with this threat actor, Netgain was informed that once payment is made, the threat actors are not known to post the data nor hold any copies of it. as an added precaution, Netgain reported its cybersecurity experts continue to monitor for any signs that the data exfiltrated has been posted for sale, and that as of january 14, 2021, no such indications have been identified. Assurances notwithstanding, Woodcreek appropriately began the process of processing the copy of the data band it received from Netgain on January 18 in preparation for mailing notifications. The recovered data lot reportedly included both personal information as defined by washington statute and “protected health information” as defined under HIPAA. The recovered data circle included the following types of personal information from business records maintained by Woodcreek provider Services: full names, dates of birth, social security numbers, pupil identification numbers, health insurance policy numbers, bank account numbers (from direct deposit forms and voided checks), resumes, transcripts, performance appraisals, criminal desktop check reports, court documents related to garnishments, tribunal orders and decrees, copies of diplomas, degrees, gameboard certifications, Drug Enforcement Agency certificates, payroll withholding authorizations for 401k elections and insurance deduction authorizations, benefit enrollment forms, payroll tax forms (W2s, W4s, 1095s, & K1s), and employee health information, including vaccination records, on-the-job injury reports and safety incident reports. The recovered data localize also included protected health information maintained by Woodcreek provider Services, Woodcreek Healthcare and/or MultiCare Health System, including patient names and addresses, medical tape numbers, dates of birth, insurance identification numbers, indemnity claims information, explanation of benefits, statements, clinical notes, referral requests, laboratory reports, determination not to vaccinate forms, authorization requests for services, treatment approvals, records requests, immunization information, vaccine records, prescription requests, discharge of information forms, subpoena records requests, medical tape disclosure logs, incident reports, invoices, agreement with patients, and some medical records. The primary electronic medical records database was not affected by this incident. For the data set, 557 persons needed to be notified of the personal information, and an additional radical of 25,360 needed to be notified because their personal information was associated with individuals receiving services delivered by either Multicare Health system or Woodcreek Healthcare. That would appear to be 25,360 Washington residents because later in the notification it says: Woodcreek provider Services is a business associate of MultiCare Health System as that relationship is defined in HIPAA and is also complying with the requirements of HIPAA in responding to this incident. An additional group of approximately 210,000 individuals will receive notification of this incident as required by HIPAA. DataBreaches.net sent an email enquiry to Woodcreek to clarify the numbers being notified, and will update this post if a answer is received. The incident is not yet up on HHS’s transgress tool.  

About HackNotice and Woodcreek Provider Services notifies more than 210,000 patients of Netgain ransomware incident

HackNotice is a service that notices trends and patterns in publically available data so as to identify possible data breaches, leaks, hacks, and other data incidents on behalf of our clients. HackNotice monitors data streams related to breaches, leaks, and hacks and Woodcreek Provider Services notifies more than 210,000 patients of Netgain ransomware incident was reported by one of those streams. HackNotice may also have the breach date, hack date, the hacker responsible, the hacked industry, the hacked location, and any other parts of the hack, breach, or leak that HackNotice can report on for the consumers of our product.

If you are a user of Woodcreek Provider Services notifies more than 210,000 patients of Netgain ransomware incident their products, services, websites, or applications and you were a client of HackNotice, monitoring for Woodcreek Provider Services notifies more than 210,000 patients of Netgain ransomware incident you may have been alerted to this report about Woodcreek Provider Services notifies more than 210,000 patients of Netgain ransomware incident . HackNotice is a service that provides data, information, and monitoring that helps our clients recover from and remediate data breaches, hacks, and leaks of their personal information. HackNotice provides a service that helps our clients know what to do about a hack, breach, or leak of their information.

If Woodcreek Provider Services notifies more than 210,000 patients of Netgain ransomware incident had a transgress of consumer data or a data leak, then there may be additional actions that our clients should read to protect their digital identity. data breaches, hacks, and leaks often top to and reason indistinguishability theft, account take overs, ransomware, spyware, extortion, and malware. account takeovers are often caused by credential reuse, password reuse, easily guessed passwords, and are facilitated by the sharing of billions of credentials and other customer info through data leaks, as the direct outcome of data breaches and hacks.

HackNotice monitors trends in publically available data that indicates tens of thousands of data breaches each year, along with billions of records from data leaks each year. On behalf of our clients, HackNotice works to monitor for hacks that lead to lower node security and digital identities that hold been exposed and should be considered vulnerable to attack. HackNotice works with clients to key the extent that digital identities have been exposed and provides remediation suggestions for how to handle each typecast of exposure.

HackNotice monitors the hacker community, which is a network of individuals that share data breaches, hacks, leaks, malware, spyware, ransomware, and many other tools that are often used for financial fraud, account accept overs, and further breaches and hacks. HackNotice monitors the hacker community specifically for breaches, hacks, and data leaks that hurt consumers. HackNotice applies industry specific knowledge and advanced security practices to monitor for trends that indicate breaches, hacks, and exposed digital identities.

HackNotice also enables clients to apportion drudge notices with their friend, family, and collogues to assist increment sentience around alleged hacks, breaches, or data leaks. HackNotice workings to provide clients with sharable reports to help increment the security of our clients personal network. The security of the people that our clients interact with directly impacts the rase of surety of our clients. Increased exposure to accounts that have been taken over by hackers leads to further account take overs through phishing, malware, and other attach techniques.

If you found this plug note to live helpful, then you may be interested in reading some additional cut notices such as:

smitted, stored or otherwise processed. The whimsy of a trusted surroundings is sWhile surety prevention may deflect a high percentage of attempts, ultimately a motivated attackerive personal information were involved in security breaches in the United States between January 200

UK: 15 schools in Nottinghamshire crippled by cyber attack

SITA says its airline passenger system was hit by a data breach - TechCrunch

Star Alliance passenger data stolen in SITA data breach IT PRO