conti attacks PFC USA

Incident Date:

March 20, 2022

World map



conti attacks PFC USA






Greeley, USA

Colorado, USA

First Reported

March 20, 2022

PFC USA Suffers Ransomware Attack, Impacting 657 Healthcare Providers

PFC USA, a prominent accounts receivable management agency, has been the victim of a ransomware attack, affecting 657 healthcare providers and nearly two million individuals. The cyber incident took place on February 26, 2022, and was promptly identified and mitigated by PFC. The company swiftly engaged with third-party forensic experts to secure their network and conduct a thorough investigation.

Operating out of Greeley, Colorado, and established in 1904, PFC USA offers debt recovery services across various sectors including healthcare, retail, finance, and government. Despite the cybersecurity breach, PFC has demonstrated a strong commitment to cybersecurity, notably achieving a SOC 2 Type II audit, underscoring their dedication to upholding stringent cybersecurity standards.

Details of the Ransomware Attack

The ransomware attack led to unauthorized access and disruption of certain PFC computer systems, potentially compromising sensitive personal data. This includes names, addresses, birth dates, account balances and payment information, Social Security numbers, as well as health insurance and medical treatment details. While there is no current evidence of data misuse, the breach presents a risk of identity theft and fraudulent use of the accessed information.

In response to the attack, PFC has enhanced its network security measures, updated its policies and procedures, and upgraded its network security software. Additionally, the company is offering complimentary credit monitoring and identity theft protection services to those potentially affected. PFC has also informed the impacted healthcare providers and established a dedicated toll-free call center to address concerns and facilitate enrollment in credit monitoring services.

The Broader Implications of the Attack

This incident is indicative of a growing trend where cybercriminals target partner organizations as a means to indirectly affect healthcare providers. It underscores the critical need for robust cybersecurity defenses across all entities that handle sensitive personal information.

The ransomware attack on PFC USA serves as a stark reminder of the ongoing threats in the digital landscape, particularly for the healthcare sector. It emphasizes the importance of continuous vigilance and the implementation of comprehensive cybersecurity measures to safeguard sensitive data.


Recent Ransomware Attacks

The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.

The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.