The HCRG Care Group in the United Kingdom has confirmed that it is investigating a cyberspace incident after a ransomware gang claiming to have violated the company’s systems to steal sensitive data.
HCRG Care Group is one of the largest independent providers of Community Health and Care in the United Kingdom. The organization, known as Virgin Care and now belongs to Twenty20 Capital, partners with national health confidence and local authorities across the United Kingdom for the provision of health care services, including emergency care, sexual health and social care services .
HCRG was this week listed at the Dark Web site of Prolific Medusa Ransomware Group, which claims to have endanger the company to steal more than two data terabytes.
Samples of allegedly stolen data shared by Medusa and TechCrunch seem to include personal data of employees, sensitive medical records, financial records and government identification documents, such as passports and birth certificates.
HCRG Alison Klabacher spokesman told TechCrunch in an email statement that the company “is currently investigating an IT security incident” and “recently identified a position on the Dark Web from a team claiming responsibility”.
The company refused to say which types of data had access, but did not question Medusa’s claims. HCRG also refused to say how many people are affected. According to the company’s website, HCRG has more than 5,000 employees and provides healthcare services to half a million patients across the United Kingdom.
“Our team has not noticed any suspicious activity from the implementation of immediate retention measures and we are working with external forensic experts to investigate the incident, the spokesman said.
HCRG said it informed the UK Commissioner’s Office and other regulatory authorities on breach.
“Our services continue to operate and see patients safely and in people with appointments or who should have access to our services they should continue to do so,” the company said.
Medusa’s Ransomware team threatens to publish allegedly stolen data unless HCRG pays the gang a $ 2 million demand.
HCRG will not confirm the way in which it was compromised, but Medusa is known to exploit Not adapting vulnerabilities to remote desktop software.
