"3AM Ransomware Stole Data of 464,000 Kootenai Health Patients"

Kootenai Health has recently disclosed a data breach impacting over 464,000 patients after their personal information was stolen and leaked by the 3AM ransomware operation.  The organization is notifying patients who received care at its facilities that it detected a cyberattack in early March 2024, which disrupted certain IT systems.  The company stated that the ongoing investigation shows that the cybercriminals gained unauthorized access to Kootenai's systems on February 22, 2024, allowing the threat actors ten days to roam the network and steal sensitive data.  The stolen data included full names, dates of birth, Social Security numbers (SSNs), driver's licenses, government ID numbers, medical record numbers, medical treatment and condition information, medical diagnoses, and health insurance information.  The 3AM ransomware gang has claimed responsibility for the attack and leaked stolen data on its darknet portal, indicating that a ransom was not paid.  The stolen data consists of a 22GB archive, available for free. This allows any other cybercriminal to download the data and utilize it in further attacks.

BleepingComputer reports: "3AM Ransomware Stole Data of 464,000 Kootenai Health Patients"