Carding Forum
Professional
The third largest pharmacy chain in the United States was defenseless against cybercriminals.
US pharmaceutical giant Rite Aid has confirmed a data breach following a cyberattack in June. The RansomHub ransomware group claimed responsibility for the company's compromise.
Rite Aid is the third-largest pharmacy chain in the United States, employing more than 6,000 pharmacists and more than 45,000 employees in 1,700 stores across 16 states. On July 12, the company said it was finalizing its investigation into the cyberattack discovered in June and is working to send data breach notifications to customers whose data was compromised.
A spokesperson for the pharmacy chain said: "Rite Aid experienced a limited cybersecurity incident in June and we are finalizing our investigation. We take our responsibility to protect personal information very seriously, and this incident was our priority."
Since the compromise, the company's systems have been fully restored and are now operating normally. Notifications to affected customers are also actively sent out.
While Rite Aid did not say what specific customer data was compromised or how many people were affected, the company assured that the leak did not affect health information or financial data.
The name of the hacker group that attacked the pharmacy chain was also not officially named, but the RansomHub ransomware gang published information about the hacking of Rite Aid on its leaked website.
The attackers said: "With access to the Rite Aid network, we obtained more than 10 GB of customer information, which is equivalent to about 45 million lines of personal information. This information includes your name, address, driver's license number, date of birth, and Rite Aid rewards program number."
After adding Rite Aid to its leak site due to the alleged termination of ransom negotiations, the ransomware group shared a screenshot of some of the stolen data as proof, saying that all the information will be leaked to the network within two weeks.
RansomHub is a relatively new ransomware group that demands a ransom from victims in exchange for non-distribution of stolen files. Stolen data is often put up for auction by hackers if negotiations fail. These criminals usually focus on ransomware based on data theft, rather than file encryption.
Last month, RansomHub claimed responsibility for the April hack of the systems of American telecommunications provider Frontier Communications, forcing the company to disable systems to localize leaks and stealing the information of more than two million customers.
Source
US pharmaceutical giant Rite Aid has confirmed a data breach following a cyberattack in June. The RansomHub ransomware group claimed responsibility for the company's compromise.
Rite Aid is the third-largest pharmacy chain in the United States, employing more than 6,000 pharmacists and more than 45,000 employees in 1,700 stores across 16 states. On July 12, the company said it was finalizing its investigation into the cyberattack discovered in June and is working to send data breach notifications to customers whose data was compromised.
A spokesperson for the pharmacy chain said: "Rite Aid experienced a limited cybersecurity incident in June and we are finalizing our investigation. We take our responsibility to protect personal information very seriously, and this incident was our priority."
Since the compromise, the company's systems have been fully restored and are now operating normally. Notifications to affected customers are also actively sent out.
While Rite Aid did not say what specific customer data was compromised or how many people were affected, the company assured that the leak did not affect health information or financial data.
The name of the hacker group that attacked the pharmacy chain was also not officially named, but the RansomHub ransomware gang published information about the hacking of Rite Aid on its leaked website.
The attackers said: "With access to the Rite Aid network, we obtained more than 10 GB of customer information, which is equivalent to about 45 million lines of personal information. This information includes your name, address, driver's license number, date of birth, and Rite Aid rewards program number."
After adding Rite Aid to its leak site due to the alleged termination of ransom negotiations, the ransomware group shared a screenshot of some of the stolen data as proof, saying that all the information will be leaked to the network within two weeks.
RansomHub is a relatively new ransomware group that demands a ransom from victims in exchange for non-distribution of stolen files. Stolen data is often put up for auction by hackers if negotiations fail. These criminals usually focus on ransomware based on data theft, rather than file encryption.
Last month, RansomHub claimed responsibility for the April hack of the systems of American telecommunications provider Frontier Communications, forcing the company to disable systems to localize leaks and stealing the information of more than two million customers.
Source
