Norton Healthcare, a prominent Kentucky-based non-profit healthcare system, has confirmed a major data breach that exposed the personal information of millions of patients and employees. This cybersecurity incident adds to the growing list of healthcare organizations grappling with the increasing threat of cyberattacks.
Norton Healthcare, operating over 40 clinics and hospitals in and around Louisville, Kentucky, disclosed that hackers gained unauthorized access to sensitive data during a ransomware attack in May. The affected data involves approximately 2.5 million patients, employees, and their dependents. Norton, the city’s third-largest private employer, employs over 20,000 individuals and boasts a medical staff exceeding 3,000 providers.
While Norton Healthcare assured that the hackers did not breach the medical record system or Norton MyChart, they did access a trove of sensitive information. Names, dates of birth, Social Security numbers, health and insurance details, and medical identification numbers were among the compromised data. Additionally, certain individuals may have had their financial account numbers, driver’s licenses, government ID numbers, and digital signatures exposed.
Norton Healthcare conducted an extensive internal investigation, completing it in November. The organization revealed that the hackers accessed network storage devices between May 7 and May 9. Despite the breach, the healthcare provider asserted that it did not pay any ransom and promptly notified law enforcement. Notably, the attack was claimed by the ALPHV/BlackCat ransomware gang, which reportedly exfiltrated nearly five terabytes of data.
Norton Healthcare’s data breach is yet another in a concerning trend across the board with U.S. healthcare. The Department of Health and Human Services (HHS) reported a concerning surge in large breaches and ransomware attacks over the past four years. 2023 alone has seen a 60% increase since 2022, with over 88 million individuals impacted.
Photo: Unsplash
