conti attacks PFC USA

Incident Date: Mar 20, 2022

Attack Overview

VICTIM

PFC USA

INDUSTRY

Business Services

LOCATION

USA

ATTACKER

Conti

FIRST REPORTED

March 20, 2022

Request Removal

PFC USA Suffers Ransomware Attack, Impacting 657 Healthcare Providers

PFC USA, a prominent accounts receivable management agency, has been the victim of a ransomware attack, affecting 657 healthcare providers and nearly two million individuals. The cyber incident took place on February 26, 2022, and was promptly identified and mitigated by PFC. The company swiftly engaged with third-party forensic experts to secure their network and conduct a thorough investigation.

Operating out of Greeley, Colorado, and established in 1904, PFC USA offers debt recovery services across various sectors including healthcare, retail, finance, and government. Despite the cybersecurity breach, PFC has demonstrated a strong commitment to cybersecurity, notably achieving a SOC 2 Type II audit, underscoring their dedication to upholding stringent cybersecurity standards.

Details of the Ransomware Attack

The ransomware attack led to unauthorized access and disruption of certain PFC computer systems, potentially compromising sensitive personal data. This includes names, addresses, birth dates, account balances and payment information, Social Security numbers, as well as health insurance and medical treatment details. While there is no current evidence of data misuse, the breach presents a risk of identity theft and fraudulent use of the accessed information.

In response to the attack, PFC has enhanced its network security measures, updated its policies and procedures, and upgraded its network security software. Additionally, the company is offering complimentary credit monitoring and identity theft protection services to those potentially affected. PFC has also informed the impacted healthcare providers and established a dedicated toll-free call center to address concerns and facilitate enrollment in credit monitoring services.

The Broader Implications of the Attack

This incident is indicative of a growing trend where cybercriminals target partner organizations as a means to indirectly affect healthcare providers. It underscores the critical need for robust cybersecurity defenses across all entities that handle sensitive personal information.

The ransomware attack on PFC USA serves as a stark reminder of the ongoing threats in the digital landscape, particularly for the healthcare sector. It emphasizes the importance of continuous vigilance and the implementation of comprehensive cybersecurity measures to safeguard sensitive data.

Sources

See Halcyon in action

Interested in getting a demo?
Fill out the form to meet with a Halcyon Anti-Ransomware Expert!

Let's get started

First Name

Last Name

Phone Number

Buying Timeframe

halcyon.ai is committed to protecting and respecting your privacy, and we’ll only use your personal information to administer your account and to provide the products and services you requested from us. From time to time, we would like to contact you about our products and services, as well as other content that may be of interest to you. If you consent to us contacting you for this purpose, please tick below to say how you would like us to contact you:

I agree to receive other communications from halcyon.ai and acknowledge Halcyon's privacy policy.

You may unsubscribe from these communications at any time. For more information on how to unsubscribe, our privacy practices, and how we are committed to protecting and respecting your privacy, please review our Privacy Policy.

By clicking submit below, you consent to allow halcyon.ai to store and process the personal information submitted above to provide you the content requested.

Back

Thank you! Your submission has been received!

Oops! Something went wrong while submitting the form.