DragonForce Ransomware Attack on Barrett Eye Care: Data Breach and Disruption

Incident Date:

June 8, 2024

World map

Overview

Title

DragonForce Ransomware Attack on Barrett Eye Care: Data Breach and Disruption

Victim

Barrett Eye Care, LLC

Attacker

Dragonforce

Location

Fishers, USA

Indiana, USA

First Reported

June 8, 2024

DragonForce Ransomware Attack on Barrett Eye Care, LLC

Overview of Barrett Eye Care, LLC

Barrett Eye Care, LLC is a comprehensive optometry practice located in Carmel, Indiana, with an additional office in Fishers. Led by Dr. Erik Barrett, the practice offers a wide range of eye care services, including routine eye exams, cataract surgery, LASIK surgery, and optical services such as glasses and contact lenses. Known for its high-quality care and state-of-the-art technology, Barrett Eye Care is dedicated to ensuring optimal eye health and clear vision for patients of all ages.

Details of the Ransomware Attack

On June 10, 2024, the ransomware group DragonForce executed an attack on Barrett Eye Care, LLC. The breach compromised patient data and disrupted medical services, resulting in a data leak of 1.25GB. The attack targeted the company's website, barretteyecare.com, and highlighted vulnerabilities in the practice's cybersecurity measures.

About DragonForce

DragonForce is a relatively new ransomware strain that has gained notoriety through high-profile attacks. Employing a double extortion tactic, the group not only encrypts victim data but also threatens to release it unless a ransom is paid. DragonForce has been linked to the notorious LockBit ransomware group, utilizing a leaked ransomware builder from LockBit to enhance its capabilities.

Penetration and Impact

The cybercriminal group likely penetrated Barrett Eye Care's systems through vulnerabilities in their network security. The group's modus operandi involves exfiltrating significant amounts of data before encryption, leveraging the threat of data exposure to coerce victims into compliance. The attack on Barrett Eye Care underscores the importance of robust cybersecurity measures, particularly for small to medium-sized practices that may be perceived as easier targets by threat actors.

Implications for Barrett Eye Care

The ransomware attack on Barrett Eye Care has significant implications for the practice, including potential financial losses, reputational damage, and the disruption of medical services. The breach of patient data also raises concerns about privacy and the potential misuse of sensitive information. As the practice works to recover from the attack, it will need to address these challenges and strengthen its cybersecurity defenses to prevent future incidents.

Sources

Recent Ransomware Attacks

The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.

The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.