- SimonMed Imaging lost sensitive data about 1.2 million people in a ransomware -attack
- Medusa assumed responsibility and demanded $ 1 million to delete 212 GB stolen patient data
- Victims offered free identity theft and credit monitoring
Simonmed Imaging, a large American outpatient medical imaging and radiology provider, has suffered a cyberattack where it loses sensitive data about more than a million people.
The company has submitted a report to the Office of Maine Attorney General, where it also shared a sample of data on data violation, as it has sent to affected customers. In that, it said that one of its suppliers in late January 2025 informed of a continuous security event.
The next day, Simonmed discovered “suspicious activity” on his own network and tried to ward off the attack by resetting the password, creating two-factor approval (2FA), implementing endpoint detection and response monitoring and removing all third-party supplier direct access to its systems.
Concrete action
But when this was done, it was already too late. Between January 21 and February 5, 2025, cyber criminal data on 1.2 million people exiled, Simonmed said. It only said criminals stole people’s names and other “data elements”.
At the same time, Ransomware operators Medusa assumed the responsibility for the attack that the neighboring 212 GB of various data, including ID scans, spreadsheets with patient information, payment information, account balance, medical reports and even raw scans.
The attackers also demanded $ 1 million to delete the data and $ 10,000 to extend the deadline for release by one day.
Now the company has been deducted from the data leakage site, suggesting that Simonmed Imaging paid the demand for ransom. This has not yet been confirmed (nor refused), and that does not necessarily mean that the organization paid the entire sum.
Relevant authorities were notified of the incident and third-party cybersecurity experts were brought in to assess the damage and help with post-Mortem. At the same time, the victims are offered free identity theft and credit monitoring services through Experian.
Via Bleeping computer
Follow Techradar on Google News and Add us as a preferred source To get our expert news, reviews and meaning in your feeds. Be sure to click the Follow button!
And of course you can too Follow Techradar at Tiktok For news, reviews, unboxings in video form and get regular updates from us at WhatsApp also.
