Thread Rating:
  • 0 Vote(s) - 0 Average
  • 1
  • 2
  • 3
  • 4
  • 5
Share Post: Reddit Facebook
Phished Healthcare Provider Takes Legal Action Against Amazon
#1
[quoteAs many as 85,688 patient and employee records were compromised last week when a threat actor seemingly based in Ukraine struck SalusCare, the largest provider of behavioral healthcare services in Southwest Florida.

The attacker is believed to have gained access to SalusCare's Microsoft 365 environment after an employee clicked a malicious link in a phishing email. The action allegedly triggered malware to exfiltrate SalusCare's entire database to two Amazon S3 storage buckets linked to the same Amazon AWS storage account.

After being notified of the alleged illegal activity, Amazon froze access to the two S3 buckets believed to have been used in the attack.

SalusCare requested access to the audit logs of the buckets as part of its investigation to determine precisely what data had been breached by the threat actor. However, Amazon refused to supply an audit log or a copy of the data stored in the S3 buckets as they do not belong to SalusCare.

The healthcare provider responded to Amazon's refusal by filing a lawsuit in federal court on Wednesday seeking for Amazon to be compelled to provide SalusCare with the audit logs and a copy of the contents of the two S3 buckets.

In the lawsuit, SalusCare also sought for Amazon to be ordered to permanently suspend the alleged attacker's access to the two S3 buckets allegedly containing the healthcare provider's swiped data.

In its petition to the US District Court in Fort Myers, SalusCare argued that the sensitive data believed to have been stolen in the attack and stored in the buckets could be sold on the dark net and used to commit identity theft.

“The files contain extremely personal and sensitive records of patients’ psychiatric and addiction counseling and treatment,” explained SalusCare. “The files also contain sensitive financial information such as social security numbers and credit card numbers of SalusCare patients and employees.”

News-Press reports that a judge granted both of SalusCare's requests on Thursday.][/quote]


Source
Reply


Possibly Related Threads…
Thread Author Replies Views Last Post
  Philips healthcare infomatics solution vulnerable to SQL injection mrtrout 0 494 11-08-2021 , 02:20 AM
Last Post: mrtrout
  February 2021’s Most Wanted Malware: Trickbot Takes Over Following Emotet Shutdown Bjyda 0 1,028 03-13-2021 , 09:49 PM
Last Post: Bjyda
  SDK Bug Lets Attackers Spy on User’s Video Calls Across Dating, Healthcare Apps Bjyda 0 838 02-19-2021 , 10:56 PM
Last Post: Bjyda
  This leading VPN provider is launching another major privacy tool Bjyda 0 779 01-15-2021 , 11:08 PM
Last Post: Bjyda
  Ransomware forces hosting provider Netgain to take down data centers mrtrout 0 889 12-09-2020 , 10:44 AM
Last Post: mrtrout

Forum Jump:


Users browsing this thread: 1 Guest(s)