alphv attacks Alliant Physical Therapy DATA
Incident Date:
April 27, 2022
Overview
Title
alphv attacks Alliant Physical Therapy DATA
Victim
Alliant Physical Therapy DATA
Attacker
Alphv
Location
First Reported
April 27, 2022
Alphv Ransomware Attack on Alliant Physical Therapy
Company Profile
Alliant Physical Therapy, a subsidiary of CORA Health, is a prominent healthcare provider in the United States, with over 240 clinics in 10 states. They specialize in outpatient services such as physical therapy, worker's compensation therapy, sports and auto injury rehabilitation, and senior rehabilitation. Their mission focuses on quickly and cost-effectively returning patients to their daily activities and jobs using evidence-based clinical practices.
Vulnerabilities and Targeting
The healthcare sector has increasingly become a target for ransomware attacks, with attackers seeking to exploit sensitive patient data for ransom. Alphv, a well-known ransomware group, has successfully breached Alliant Physical Therapy's network defenses, encrypting vital data and compromising system integrity.
Impact and Response
This ransomware attack has significantly disrupted Alliant Physical Therapy's operations, impacting patient care and payment processing capabilities. It is imperative for the organization to collaborate with cybersecurity professionals and software providers to evaluate the damage, pinpoint security weaknesses, and fortify their defenses against future cyber threats.
Mitigation Strategies
Healthcare entities must elevate their cybersecurity posture to deter ransomware attacks effectively. This includes adhering to best practices such as conducting regular software updates and patches, educating employees on cybersecurity awareness, and deploying advanced anti-virus solutions. Additionally, establishing a comprehensive incident response strategy is crucial for swiftly addressing and mitigating the consequences of cyber incidents.
Sources
- CORA Physical Therapy: https://www.coraphysicaltherapy.com
- Reuters: Healthcare providers hit by frozen payments in ransomware outage: https://www.reuters.com/technology/cybersecurity/healthcare-providers-hit-by-frozen-payments-ransomware-outage-2024-02-29/
- HIPAA Journal: HIPAA Breaches: https://www.hipaajournal.com/hipaa-breaches/
- Physical Therapy Products: The Threat of Ransomware: https://ptproductsonline.com/practice-management/software/threat-ransomware/
- Fast Company: Change Healthcare cyberattack cripples providers' payroll: https://www.fastcompany.com/91047940/change-healthcare-cyberattack-disrupts-providers-payroll
- State of California - Department of Justice: Search Data Security Breaches: https://oag.ca.gov/privacy/databreach/list
Recent Ransomware Attacks
The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.
The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.