HQ/EMEAFind out how we can help your business
Intellihartx, a company that provides hospitals’ patient balance resolution services, revealed that it suffered a data breach incident. Based on reports, the data breach attack occurred after the attackers exploited the GoAnywhere zero-day vulnerability.
This company informed nearly 500,000 patients of the recent attack which compromised its systems. Moreover, the alleged attackers exploited the GoAnywhere zero-day flaw to execute the data breach incident.
The actors utilised the recently disclosed flaw to infiltrate the Intellihartx systems.
According to investigations, the threat actors used Fortra’s GoAnywhere MFT software flaw to breach Intellihartx. The researchers uncovered this malicious flaw earlier this year and linked it to the Cl0p ransomware group.
The flaw is CVE-2023-0669, which could enable an attacker to have a remote code execution capability. The first surge of attackers that used this flaw happened in January. Fortunately, the admins released a patch after the week of disclosure.
Intellihartx stated on its website that its investigation team concluded its initial review of the data allegedly impacted during the data breach and identified the affected individuals.
The confirmed information compromised during the attack includes full names, addresses, insurance data, medical billion, diagnosis, medication information, Social Security numbers, and birth dates.
Intellihartx also added that they had not identified any proof of data misuse since the start of the breach. However, Cl0p claimed the stolen data is already available on its data leak website.
The impacted company has already notified the Maine Attorney General’s Office that there are approximately 490,000 individuals that suffered from the data breach incident.
The GoAnywhere flaw has compromised numerous companies for the past months. The most notable companies that suffered the same incident as Intellihartx are Community Health Systems, Crown Resorts, Saks Fifth Avenue, P&G, Rio Tinto, Atos, Rubrik, and Hitachi Energy. Other organisations nearly suffered an attack through the flaw but only felt a limited impact.
The latest weapon of the Cl0p ransomware group is the newly discovered MOVEit Transfer MFT zero-day flaw. Therefore, organisations should be vigilant about the group’s activities since they will try to attack anyone to gain revenue.
