Professional Finance Company Inc. (PFC) confirms that a ransomware attack led to a data breach affecting over 600 healthcare organizations.
Professional Finance Company Inc. (PFC) confirms that a ransomware attack led to a data breach affecting over 600 healthcare organizations.
PFC, a full-service accounts receivables management company, aids thousands of healthcare, government, and utility organizations across the U.S. to make sure that customers pay their invoices on time.
On May 5, the company started notifying the impacted healthcare provider's patients that in an ongoing investigation, they found that the attackers accessed files containing their data before encrypting some of PFC’s systems.
The sensitive data exposed during the attack includes patients' first and last names, addresses, accounts receivable balance and information regarding payments made to accounts.
In some cases, the files also comprised dates of birth, social security numbers, medical treatment information and health insurance.
While PFC did not share the precise number of affected healthcare providers, it linked to a PDF file listing all the impacted organizations comprising the names of 657 healthcare entities.
The company stated that it is mailing letters to potentially involved individuals with details about the incident and giving resources they can use to help protect their information.
PFC also stated that they offer potentially involved individuals access to free credit monitoring and identity theft protection services through Cyberscout, a prominent identity protection company.
"Our Andariel platform detected the PFC attack via signal collections on February 23, 2022, from the Cobalt Strike infrastructure with the early warning details following the attack flow," AdvIntel CEO Vitali Kremez reported to BleepingComputer.
"The attackers behind the operations are linked to Conti/Quantum ransomware sub-group moving laterally inside using Cobalt Strike and exfiltrating data via command-line tools."
For the latest cyber threats and the latest hacking news please follow us on Facebook, Linkedin, and Twitter.
You may be interested in reading: How to Survive the COVID Time Cyber Security Threats?