Community Health Systems (CHS) reports a third-party data breach involving Fortra’s GoAnywhere managed file transfer (MFT) solution.
Community Health Systems (CHS) reports a third-party data breach involving Fortra’s GoAnywhere managed file transfer (MFT) solution.
CHS contracts with a cybersecurity firm Fortra, which offers a secure file transfer software known as GoAnywhere.
The investigation revealed that the resulting data breach with regard to the PHI and PI compromised by the Fortra breach affected the personal and health information of around 1 million patients.
“While that investigation is still ongoing, the Company believes that the Fortra breach has not had any impact on any of the Company's information systems and that there has not been any material interruption of the Company's business operations, including the delivery of patient care," said CHS an 8-K filing with the SEC first spotted by DataBreaches.net.
The company added that it would provide identity theft protection services and notify all affected individuals whose information was exposed in the breach.
According to BleepingComputer, the Clop ransomware claims to be behind these attacks.
Clop also said they had allegedly stolen the data over ten days after breaching GoAnywhere MFT servers vulnerable to exploits targeting the CVE-2023-0669 RCE bug. The vulnerability received a severity score of 7.2 in the National Vulnerability Database (NVD).
Want your digital assets to be protected?
CyberShelter provides innovative and modern cybersecurity products and niche services to individuals and organization against all kinds of cyber threats.
For the latest cyber threats and the latest hacking news please follow us on Facebook, Linkedin, and Twitter.
You may be interested in reading: How to Survive the COVID Time Cyber Security Threats?