- La colaboración entre Seguridad y FinOps puede generar beneficios ocultos en la nube
- El papel del CIO en 2024: una retrospectiva del año en clave TI
- How control rooms help organizations and security management
- ITDM 2025 전망 | “효율경영 시대의 핵심 동력 ‘데이터 조직’··· 내년도 활약 무대 더 커진다” 쏘카 김상우 본부장
- 세일포인트 기고 | 2025년을 맞이하며… 머신 아이덴티티의 부상이 울리는 경종
Cyber-attack on Planned Parenthood
A cyber-attack on Planned Parenthood Los Angeles (PPLA) has resulted in the exposure of patients’ personally identifying information (PII).
The agency said in a notice posted to its website on Wednesday that suspicious activity was detected on its computer network on October 17.
An investigation into the activity remains ongoing; however, it has been determined that an unauthorized person broke into PPLA’s system between October 9, 2021, and October 17, 2021.
PPLA said that during the attack “malware/ransomware” was installed on its network and “some files” were exfiltrated from its systems.
A review of the compromised files found that patient data had been accessible to the threat actor.
“On November 4, we identified files that contained certain patients’ names, and one or more of the following: dates of birth, addresses, insurance identification numbers, and clinical data, such as diagnosis, treatment, or prescription information,” wrote PPLA.
PPLA operates 21 health centers in the Southern California city. The Sacramento Bee reports that 400,000 PPLA patients were impacted by the attack.
PPLA spokesperson John Erickson told the Washington Post that the cyber-attack appeared to be part of a ransomware extortion scheme, in which hackers encrypt files and demand a ransom for a decryption key.
No evidence has been found to suggest that any of the compromised information has been used for fraudulent purposes.
PPLA is notifying impacted patients by mail and encourages those affected by the incident to review statements from their healthcare providers and insurers for suspicious activity.
“Ransomware continues to be a major issue for organizations around the world, especially now that data is stolen before being encrypted,” said Erich Kron, security awareness advocate at KnowBe4.
“This stolen data, and the threats by the ransomware gangs that perform the attacks to release it publicly, have contributed to the skyrocketing ransom amounts we are seeing.”
Kron added that the damage caused by this ransomware attack could be more than financial.
“In this case, very personal and private information related to very controversial procedures has been stolen, something that could directly impact the trust people have in the organization, especially if the data is released,” said Kron.