Rockford Gastroenterology Associates notifies 147,253 patients of December 2023 cyberattack

Rockford Gastroenterology Associates notifies 147,253 patients of December 2023 cyberattack

Briefly

In December 2023, Rockford Gastroenterology Associates was identified as a potential ransomware victim by DataBreaches, with 45 GB of files claimed to have been exfiltrated by the threat actors.

Databreacheshttps://databreaches.net/2024/11/22/rockford-gastroenterology-associates-notifies-147253-patients-of-december-2023-cyberattack/

Despite notifying HHS that 147,253 patients were affected, RGA's public disclosure fails to clarify the types of protected health information acquired by unauthorized parties.

Databreacheshttps://databreaches.net/2024/11/22/rockford-gastroenterology-associates-notifies-147253-patients-of-december-2023-cyberattack/

RGA's notice of September 18, 2024, reveals that their electronic health records system was not compromised, but does not disclose the ransom demand or that leaked data is now available on the dark web.

Databreacheshttps://databreaches.net/2024/11/22/rockford-gastroenterology-associates-notifies-147253-patients-of-december-2023-cyberattack/

It remains unclear what information was specifically obtained during the breach since RGA's communications to patients lacked transparency regarding the security incident and the subsequent data leak.

Databreacheshttps://databreaches.net/2024/11/22/rockford-gastroenterology-associates-notifies-147253-patients-of-december-2023-cyberattack/