HQ/EMEAFind out how we can help your business
NorthBay Healthcare Corporation (NorthBay Health), a non-profit healthcare system in Solano County, California, has disclosed a significant data breach that affected over 569,000 individuals. The breach occurred following a ransomware attack last year, with attackers gaining access to sensitive information over several months.
The unauthorised access was discovered on 23 February 2024, though the investigation revealed that the attackers had infiltrated NorthBay Health’s network between 11 January and 1 April 2024. During that period, the hackers managed to access files containing highly sensitive data. This data included names, dates of birth, Social Security numbers, driver’s licence and passport details, medical records, and even biometric information.
Additionally, the cybercriminals obtained financial information, such as credit and debit card details, expiration dates, security codes, and PINs. Usernames and passwords were also exposed, significantly raising the risk of unauthorised account access.
NorthBay Health is in the process of notifying all 569,012 affected individuals, as reported to the Maine Attorney General’s Office. However, the organisation did not specify how many of those affected are patients or employees. To support those impacted, NorthBay Health is offering free identity protection and credit monitoring services.
Despite the extent of the breach, NorthBay Health assured individuals that there is no evidence suggesting their data has been used for identity theft or fraud.
The attack forced NorthBay Health to shut down its systems on 1 April 2024, which is often a response to ransomware attacks. Employees had to rely on downtime procedures at its Fairfield and Vacaville facilities, with some patients being turned away as services were temporarily disrupted. The recovery process lasted for at least two weeks as systems were slowly restored.
Although NorthBay Health did not officially confirm that ransomware was involved, the circumstances of the attack suggest otherwise. Notably, no known ransomware group has claimed responsibility for the breach, raising the possibility that a ransom may have been paid to keep the incident out of the spotlight.
NorthBay Health operates two hospitals and multiple clinics in Solano County, providing a wide range of medical services, including primary care, trauma, orthopaedics, neurology, heart, and cancer care. It employs more than 150 doctors dedicated to serving the community.
Authorities and security researchers are continuing to seek clarification from NorthBay Health regarding the details of the attack. For now, the company aims to make sure that affected individuals are informed and protected from further risks.
