hiveleak attacks Goodman Campbell Brain and Spine- Greenwood

Incident Date: Jun 08, 2022

Attack Overview
VICTIM
Goodman Campbell Brain and Spine- Greenwood
INDUSTRY
Healthcare Services
LOCATION
USA
ATTACKER
Hiveleak
FIRST REPORTED
June 8, 2022

Goodman Campbell Brain and Spine Suffers Ransomware Attack by Hiveleak

Goodman Campbell Brain and Spine, a healthcare provider based in Carmel, Indiana, has been targeted by the ransomware group Hiveleak. The attack was announced on the dark web leak site, where the victim's website was listed. The company operates in the Healthcare Services sector and has been in existence since 2010, following the merger of the Indianapolis Neurosurgical Group and the Indiana University Department of Neurological Surgery.

Company Size and Unique Aspects

Goodman Campbell Brain and Spine is a large, independent surgical group that specializes in treating a wide range of conditions on the brain and spine, including aneurysms, concussions, pituitary disorders, spinal discs, tumors, injuries, and degenerative diseases. The company has a team of experienced surgeons and allied health professionals who are dedicated to providing exceptional care for patients, focusing on research, innovation, and collaboration.

Vulnerabilities and Impact

The ransomware attack on Goodman Campbell Brain and Spine occurred on May 20, 2022, and compromised patient and employee data, including names, birth dates, email addresses, medical record numbers, patient account numbers, phone numbers, physician names, treatment information, addresses, insurance information, dates of service, and Social Security numbers. The company immediately took steps to safeguard its affected systems, eradicate any malicious activity, and began restoring its systems.

The attack did not affect the practice's EMR system, but the attackers successfully accessed appointment schedules, insurance eligibility documentation, and referral forms. The impacted information was made available on the dark web for approximately 10 days. Goodman Campbell Brain and Spine notified nearly 363,000 individuals of the data breach and offered complimentary credit monitoring services.

Response and Mitigation

The company engaged a forensic analysis and incident response firm and notified the FBI cybercrimes division to assist with the case. It is unclear whether the hackers demanded ransom, as has been the case with other healthcare institutions. Goodman Campbell Brain and Spine has implemented new monitoring solutions to protect against future cyber attacks.

Sources

See Halcyon in action

Interested in getting a demo?
Fill out the form to meet with a Halcyon Anti-Ransomware Expert!

1
2
3
Let's get started
1
1
2
3
1
1
2
2
3
Back
Next
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.