Nearly 500K Intellihartx patients’ data compromised in Clop GoAnywhere attack

Tennessee-based healthcare revenue cycle management firm Intellihartx has disclosed that 489,830 patients had their personal and medical data stolen following a Clop ransomware attack aimed at the Fortra GoAnywhere Managed File Transfer system in February, TechCrunch reports. Aside from exfiltrating patient names, birthdates, addresses, and Social Security numbers, threat actors behind the attack were also able to steal patient diagnoses, medication, medical billing, and insurance details, said Intellihartx in a notice filed with the Maine Attorney General's Office. Millions of U.S. patients were already reported to have their data compromised during the widespread Clop GoAnywhere attacks, resulting in an advisory from the Department of Health and Human Services regarding the ransomware operation's threat in the healthcare sector. More than 100 organizations, including security firm Rubrik, digital financial services company Hatch Bank, and the City of Toronto, have also been affected by the GoAnywhere intrusions by Clop ransomware, which has since moved to compromise the MOVEit File Transfer app.