Hackers broke into the computers of NextGen Healthcare, an American provider of electronic health record software, and stole the personal information of over a million patients. NextGen Healthcare reported that hackers accessed the personal information of 1.05 million patients, including about 4,000 Maine residents.
In a notification filed with the office of the attorney general of Maine. NextGen Healthcare claimed in a statement it issued to patients that their personal information, including names, birthdays, residences, and Social Security numbers, had been compromised by hackers.
Importantly, the company added, their investigation turned up no signs of unauthorized access to, or alteration of, any of your health or medical records or data. It is still unknown what data was exfiltrated, and a spokeswoman for NextGen Healthcare, Tami Andrade, did not immediately respond to TechCrunch’s inquiry as to whether the company had the resources, such as logs, to uncover such information.
According to a report filed with the Attorney General of Maine, NextGen Healthcare discovered that hackers had accessed its networks from March 29 through April 14, 2023 after receiving a warning about suspicious activity on March 30. According to the warning, the hackers broke into the cloud-based EHR and practice management package NextGen Office using client credentials that appear to have been acquired from other sources or incidents unrelated to NextGen. These other sources or incidents are not related to NextGen.
According to sources, the ALPHV ransomware group, also known as BlackCat, attacked NextGen with ransomware in January of this year. Examples of the stolen data, which includes employee names, addresses, phone numbers, and passport scans, in a listing on ALPHV’s dark web leak site.
As the number of patients affected by the recent ransomware attack on Fortra’s GoAnywhere file-transfer platform increases, news of the current breach at NextGen has emerged. Last week, Florida-based IT business NationBenefits revealed that the cyberattack compromised the personal information of more than 3 million members, while the virtual therapy provider Brightline said that the personal information of more than 960,000 of its pediatric mental health patients was compromised.
Conclusion
NextGen Healthcare, a provider of healthcare solutions, has begun notifying the approximately one million people whose confidential details were stolen in a data breach. The Atlanta, Georgia-based firm develops EHR software for sale and offers practice management services to the medical community. NextGen Healthcare notified the Maine Attorney General’s Office on Friday that it had begun distributing notice letters to over a million people. The letters state that on March30, 2023, NextGen Healthcare discovered the first signs of suspicious behavior on their systems. According to the probe into the incident, someone gained access to the systems in question between March 29 and April 14, 2023.
NextGen Healthcare claims it stores such information on its clients’ behalf to give them the services they’ve requested. During this period, hackers gained access to sensitive information, including names, addresses, dates of birth, and Social Security numbers. According to the organization, there is no proof that the intruder viewed sensitive patient information. NextGen Healthcare notified the Maine Attorney General that the attackers gained access to the database using customer credentials that were likely stolen in a separate incident. The company claims to have reset passwords in an effort to control the situation and to have notified law enforcement, with whom it is cooperating throughout the inquiry. NextGen was attacked by a well-publicized ransomware gang earlier this year, but the company has released no details about the incident’s aftermath.
The opinions expressed in this post belong to the individual contributors and do not necessarily reflect the views of Information Security Buzz.