DragonForce Ransomware Attack on Barrett Eye Care: Data Breach and Disruption
Incident Date:
June 8, 2024
Overview
Title
DragonForce Ransomware Attack on Barrett Eye Care: Data Breach and Disruption
Victim
Barrett Eye Care, LLC
Attacker
Dragonforce
Location
First Reported
June 8, 2024
DragonForce Ransomware Attack on Barrett Eye Care, LLC
Overview of Barrett Eye Care, LLC
Barrett Eye Care, LLC is a comprehensive optometry practice located in Carmel, Indiana, with an additional office in Fishers. Led by Dr. Erik Barrett, the practice offers a wide range of eye care services, including routine eye exams, cataract surgery, LASIK surgery, and optical services such as glasses and contact lenses. Known for its high-quality care and state-of-the-art technology, Barrett Eye Care is dedicated to ensuring optimal eye health and clear vision for patients of all ages.
Details of the Ransomware Attack
On June 10, 2024, the ransomware group DragonForce executed an attack on Barrett Eye Care, LLC. The breach compromised patient data and disrupted medical services, resulting in a data leak of 1.25GB. The attack targeted the company's website, barretteyecare.com, and highlighted vulnerabilities in the practice's cybersecurity measures.
About DragonForce
DragonForce is a relatively new ransomware strain that has gained notoriety through high-profile attacks. Employing a double extortion tactic, the group not only encrypts victim data but also threatens to release it unless a ransom is paid. DragonForce has been linked to the notorious LockBit ransomware group, utilizing a leaked ransomware builder from LockBit to enhance its capabilities.
Penetration and Impact
The cybercriminal group likely penetrated Barrett Eye Care's systems through vulnerabilities in their network security. The group's modus operandi involves exfiltrating significant amounts of data before encryption, leveraging the threat of data exposure to coerce victims into compliance. The attack on Barrett Eye Care underscores the importance of robust cybersecurity measures, particularly for small to medium-sized practices that may be perceived as easier targets by threat actors.
Implications for Barrett Eye Care
The ransomware attack on Barrett Eye Care has significant implications for the practice, including potential financial losses, reputational damage, and the disruption of medical services. The breach of patient data also raises concerns about privacy and the potential misuse of sensitive information. As the practice works to recover from the attack, it will need to address these challenges and strengthen its cybersecurity defenses to prevent future incidents.
Sources
Recent Ransomware Attacks
The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.
The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.