Massachusetts General Hospital Data Breach

This week we hear about how 4,300 Patients Affected by Massachusetts General Hospital Data Breach and how Old Malware Used in New Medical Device Hijacking Attacks.

Breach

4,300 Patients Affected by Massachusetts General Hospital Data Breach

On June 29, hospital executives at Massachusetts General Hospital confirmed that they had been breached, personal information of about 4,300 dental patients had been affected. A third-party vendor is being pointed at being the culpable party for the unauthorized access to the network of Patterson Dental Supply, which services Massachusetts General Hospital with the software used in managing dental practice information. Stolen patient information includes name, date of birth and Social Security number. Plus, some records could have also included date and type of dental appointment. 

References: Massachusetts General Hospital data breach affects 4.3K patients | 4,300 records breached at Massachusetts General Hospital in Boston | Data breach at Mass. General involves 4,300 dental patients

Mitigation Strategies:

Malware

Old Malware Used in New Medical Device Hijacking Attacks

Attackers are taking old malware and repackaging it with the latest and most sophisticated attack tools to target medical devices running on legacy operating systems, leaving them susceptible to old, and often overlooked, malware. MEDJACK.2 is able to launch these attacks without detection, and establish backdoors within hospitals and medical devices.

Medical devices vulnerable to MEDJACK.2 include diagnostic equipment (PET scanners, CU scanners, MRI machines, etc.), therapeutic equipment (infusion pumps, medical lasers, surgical machines), life support equipment (heart/lung machines, medical ventilators, dialysis machines) and more.

References: Old malware used in new medical device hijacking attacks to breach hospitals | X-ray and MRI machines among devices used as springboards for data breach attacks | New exploits target hospital devices, places patients at risk

Mitigation Strategies:

Top 20 IP Addresses

81.183.56.217 46.109.168.179
118.170.130.207 85.93.0.43
188.118.2.26 93.174.93.94
104.237.153.148 114.44.192.128
5.196.70.240 180.250.40.98
91.197.232.85 87.222.67.194
192.42.116.41 123.184.34.189
59.46.10.105 114.215.208.172
94.242.255.196 101.108.233.172
101.108.233.172 27.54.210.89

*IP addresses provided by Recorded Future.