"Hive Claims Stealing Consulate Health Data; Provider Reports Vendor Incident"

The Hive ransomware threat group recently claimed to have stolen 550 GB of data from Consulate Health Care.  The actors' dark web posting appeared around the same time a notice was posted on the company's website that warned patients of potential access to their data.  The company owns 140 nursing homes across the country and also provides other senior care services.  The company does not currently know the number of patients whose data may have been accessed.  Consulate Health has also not confirmed whether the vendor incident is tied to the Hive posting.  The company determined that one of its vendors experienced a "security incident" in early December.  Threat actors targeted portions of the network, prompting incident response plans and an investigation to determine the scope.  The analysis confirmed that the threat actors may have accessed records containing personal information.  The company intends to notify patients as soon as they've determined whether their information was contained in the files accessed by the actors.  For now, patients are being urged to "remain vigilant" and monitor for unauthorized activity.

SC Media reports: "Hive Claims Stealing Consulate Health Data; Provider Reports Vendor Incident"