SimonMed Imaging, a U.S. medical imaging provider, experienced a data breach exposing sensitive information of over 1.2 million individuals due to a cyberattack involving Medusa ransomware. The breach included potentially highly sensitive personal and medical data, and the company may have negotiated a ransom payment to hackers. #MedusaRansomware #SimonMedImaging
Keypoints
- SimonMed Imaging’s systems were compromised, leading to unauthorized access between January 21 and February 5.
- The breach affected over 1.2 million individuals’ sensitive medical and personal data.
- Reaction included password resets, multi-factor authentication, EDR monitoring, and network traffic restrictions.
- Hackers claimed to have stolen 212 GB of data and threatened to publish it unless a ransom was paid.
- SimonMed is no longer listed on the hackers’ leak site, suggesting a ransom negotiation occurred.