Man
Professional
- Messages
- 3,085
- Reaction score
- 623
- Points
- 113
Each day of silence gave rise to more and more suspicions.
Henry Schein has finally confirmed a data breach after two cyberattacks in 2023, for which the now-defunct ALPHV/BlackCat group claimed responsibility. As a result of the incidents, the personal data of 166,432 people were compromised.
Henry Schein is a global healthcare solutions provider and a Fortune 500 member with operations in 32 countries and revenues of more than $12 billion in 2022.
The first attack that disrupted production and distribution systems was detected on October 15, 2023. To prevent further damage, the company had to temporarily shut down some of the systems.
BlackCat then claimed responsibility for the incident, claiming to have stolen 35 TB of confidential files. Already on November 22, the company again reported a new attack by the same group, which had already ceased its activities at that time. The hackers said they had encrypted the company's network again after negotiations failed and threatened to do so a third time if the ransom was not paid.
Although it is not known whether a third attack was carried out, some of the stolen data appeared on the BlackCat leak site. Only a year later, the company officially notified the Attorney General of Maine that the personal data of 166,432 people had been stolen during the attacks.
In a notice of a privacy breach, Henry Schein stressed that it had engaged independent experts to assess the scale of the leak. The investigation continued throughout the first half of 2024 and required significant resources. As a result, it turned out that among the stolen data there may be not only basic personal information, but also other sensitive data.
The company offered affected users two-year free access to the Experian IdentityWorks service to monitor credit history and detect signs of fraud. Henry Schein has not yet responded to journalists' requests for details of the leak.
Source
Henry Schein has finally confirmed a data breach after two cyberattacks in 2023, for which the now-defunct ALPHV/BlackCat group claimed responsibility. As a result of the incidents, the personal data of 166,432 people were compromised.
Henry Schein is a global healthcare solutions provider and a Fortune 500 member with operations in 32 countries and revenues of more than $12 billion in 2022.
The first attack that disrupted production and distribution systems was detected on October 15, 2023. To prevent further damage, the company had to temporarily shut down some of the systems.
BlackCat then claimed responsibility for the incident, claiming to have stolen 35 TB of confidential files. Already on November 22, the company again reported a new attack by the same group, which had already ceased its activities at that time. The hackers said they had encrypted the company's network again after negotiations failed and threatened to do so a third time if the ransom was not paid.
Although it is not known whether a third attack was carried out, some of the stolen data appeared on the BlackCat leak site. Only a year later, the company officially notified the Attorney General of Maine that the personal data of 166,432 people had been stolen during the attacks.
In a notice of a privacy breach, Henry Schein stressed that it had engaged independent experts to assess the scale of the leak. The investigation continued throughout the first half of 2024 and required significant resources. As a result, it turned out that among the stolen data there may be not only basic personal information, but also other sensitive data.
The company offered affected users two-year free access to the Experian IdentityWorks service to monitor credit history and detect signs of fraud. Henry Schein has not yet responded to journalists' requests for details of the leak.
Source
