Ransomware Attack on American Clinical Solutions: A Healthcare Data Breach

Incident Date: May 21, 2024

Attack Overview
VICTIM
American Clinical Solutions
INDUSTRY
Healthcare Services
LOCATION
USA
ATTACKER
Ransomhub
FIRST REPORTED
May 21, 2024

Ransomware Attack on American Clinical Solutions

Victim Overview

American Clinical Solutions (ACS) is a healthcare services company based in Sun City Center, Florida. They specialize in providing testing services, including urine and oral fluid confirmation laboratory toxicology services. With 84 employees and a revenue of $19.5 million, ACS is a significant player in the healthcare sector.

Company Standout

ACS stands out in the industry for its specialized testing services, particularly in the field of toxicology. They offer a wide range of testing services to various industries, ensuring the quality and safety of products.

Attack Overview

In May 2024, ACS fell victim to a ransomware attack orchestrated by the cybercrime group RansomHub. The attackers managed to exfiltrate 700 GB of highly sensitive data, compromising the personal information of 500,000 patients, including social security numbers, addresses, drug tests, medical records, and insurance data. A sample of this data has been leaked, highlighting the severe risks posed to healthcare organizations by ransomware.

Ransomware Group - RansomHub

RansomHub is a new ransomware group known for making claims and backing them up with data leaks. Operating as a Ransomware-as-a-Service (RaaS) group, RansomHub affiliates receive 90% of the ransom money, with the remaining 10% going to the main group. The group has targeted various countries, including the US, Brazil, Indonesia, and Vietnam, with healthcare institutions being among the victims.

Attack Vulnerabilities

ACS's vulnerabilities in being targeted by threat actors likely stem from the sensitive nature of the data they handle. Healthcare organizations are prime targets for ransomware attacks due to the valuable patient information they possess. In this case, the attackers exploited vulnerabilities in ACS's systems to exfiltrate a large amount of data, posing a significant threat to patient privacy and security.

Sources:

See Halcyon in action

Interested in getting a demo?
Fill out the form to meet with a Halcyon Anti-Ransomware Expert!

1
2
3
Let's get started
1
1
2
3
1
1
2
2
3
Back
Next
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.