lockbit3 attacks American Heart Association

Incident Date:

August 9, 2022

World map



lockbit3 attacks American Heart Association


American Heart Association




Oklahoma City, USA

Oklahoma, USA

First Reported

August 9, 2022

American Heart Association Targeted by Lockbit3 Ransomware Group

The American Heart Association (AHA) has been targeted by the ransomware group Lockbit3, which claimed responsibility for the attack on the organization's website. The AHA operates in the Healthcare Services sector and is known for its innovative architecture that combines functionality, sustainability, and modern design. The company's website showcases a range of projects, including public and private buildings, and emphasizes the importance of teamwork in realizing these projects.

Company Size and Industry Standing

The American Heart Association is a prominent organization in the healthcare sector, with a strong focus on research, advocacy, and education related to heart disease and stroke. The company's website does not provide specific information about its size or number of employees. However, it is known for its interdisciplinary team of architects, engineers, and energy consultants, who work together to create buildings that meet diverse requirements.

Vulnerabilities and Targeting

The AHA's website does not provide detailed information about its cybersecurity measures or any vulnerabilities that may have led to the ransomware attack. However, the organization's focus on technology and innovation suggests that it may have been targeted due to its digital presence and potential weaknesses in its cybersecurity infrastructure.

The Lockbit3 ransomware group has been active since 2020 and has targeted various industries, including healthcare, manufacturing, and government. The group typically demands payment in cryptocurrency and threatens to release stolen data if the ransom is not paid.

Response and Mitigation

The American Heart Association has not issued a public statement regarding the ransomware attack. It is unclear whether the organization has paid the ransom or if it has taken steps to mitigate the damage caused by the attack.

In the wake of the attack, the AHA may need to review its cybersecurity measures and implement additional safeguards to protect against future attacks. This could include regular security audits, employee training, and the use of advanced security technologies.


Recent Ransomware Attacks

The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.

The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.