lockbit3 attacks CCA Health California

Incident Date:

September 27, 2022

World map

Overview

Title

lockbit3 attacks CCA Health California

Victim

CCA Health California

Attacker

Lockbit3

Location

Cerritos, USA

Calrifornia, USA

First Reported

September 27, 2022

CCA Health California Suffers Ransomware Attack by Lockbit3

Company Size and Industry Standout

CCA Health California, a health insurance agency based in California, is known for its Medicare Advantage plans that offer extensive benefits. These include $0 monthly premiums, $0 costs for primary care and specialist visits, $0 for Tier 1 and 2 prescription drugs, and $0 for routine vision and hearing exams, as well as labs and x-rays. The company's mission is to provide affordable healthcare services, a commitment prominently featured on its website.

Vulnerabilities and Targeting

The healthcare sector has increasingly become a prime target for ransomware attacks, with a notable surge in incidents. In July 2023 alone, the sector experienced 14 ransomware attacks, marking an 81% increase compared to 2022. The Lockbit3 ransomware group, known for its aggressive targeting strategies, has claimed responsibility for the recent attack on CCA Health California. This incident adds to the concerning trend of cyber threats facing healthcare organizations.

Previous Attacks on Healthcare Providers

In November 2022, the healthcare industry faced a series of ransomware attacks that compromised a total of 5,374,670 records, representing 77.8% of all records breached during that month. These incidents highlight the significant cybersecurity risks that healthcare providers face, emphasizing the critical need for enhanced protective measures to safeguard patient data against unauthorized access and exploitation.

The ransomware attack on CCA Health California by Lockbit3 underscores the persistent and evolving cyber threats targeting the healthcare sector. It is imperative for healthcare organizations to elevate their cybersecurity protocols and remain vigilant against the latest attack methodologies and threat actors to protect sensitive patient information effectively.

Sources

Recent Ransomware Attacks

The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.

The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.