lockbit3 attacks CCA Health California
Incident Date:
September 27, 2022
Overview
Title
lockbit3 attacks CCA Health California
Victim
CCA Health California
Attacker
Lockbit3
Location
First Reported
September 27, 2022
CCA Health California Suffers Ransomware Attack by Lockbit3
Company Size and Industry Standout
CCA Health California, a health insurance agency based in California, is known for its Medicare Advantage plans that offer extensive benefits. These include $0 monthly premiums, $0 costs for primary care and specialist visits, $0 for Tier 1 and 2 prescription drugs, and $0 for routine vision and hearing exams, as well as labs and x-rays. The company's mission is to provide affordable healthcare services, a commitment prominently featured on its website.
Vulnerabilities and Targeting
The healthcare sector has increasingly become a prime target for ransomware attacks, with a notable surge in incidents. In July 2023 alone, the sector experienced 14 ransomware attacks, marking an 81% increase compared to 2022. The Lockbit3 ransomware group, known for its aggressive targeting strategies, has claimed responsibility for the recent attack on CCA Health California. This incident adds to the concerning trend of cyber threats facing healthcare organizations.
Previous Attacks on Healthcare Providers
In November 2022, the healthcare industry faced a series of ransomware attacks that compromised a total of 5,374,670 records, representing 77.8% of all records breached during that month. These incidents highlight the significant cybersecurity risks that healthcare providers face, emphasizing the critical need for enhanced protective measures to safeguard patient data against unauthorized access and exploitation.
The ransomware attack on CCA Health California by Lockbit3 underscores the persistent and evolving cyber threats targeting the healthcare sector. It is imperative for healthcare organizations to elevate their cybersecurity protocols and remain vigilant against the latest attack methodologies and threat actors to protect sensitive patient information effectively.
Sources
- The State of Ransomware in 2023 - e-Crime Bureau: https://www.ecrimebureau.com/state-of-ransomware-2023/
- Search Data Security Breaches | State of California - Department of Justice: https://oag.ca.gov/privacy/databreach/list
- November 2022 Healthcare Data Breach Report - The HIPAA Journal: https://www.hipaajournal.com/november-2022-healthcare-data-breach-report/
- Third-Party Data Breach Impacts 119 Pediatric Practices, 2.2M Patients: https://www.hipaajournal.com/third-party-data-breach-impacts-119-pediatric-practices-2-2m-patients/
Recent Ransomware Attacks
The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.
The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.