Cyberattackers Target Missouri Hospital At Epicenter Of COVID Outbreak, Post Patient Data
A health care provider in southeast Missouri has become the latest target of ransomware hackers.
Missouri Delta Medical Center in Sikeston, roughly 30 miles south of Cape Girardeau, confirmed the data breach Friday. In a statement to St. Louis Public Radio, the medical center said that an “unauthorized third party” stole information from one of its servers and that the hospital is working with an outside security firm to investigate the cyberattack.
The ransomware group known as Hive began posting confidential patient information on Sept. 9, including names, Social Security numbers and medical information.
The FBI’s Cyber Division issued an alert in August, warning that ransomware attackers affiliated with Hive use a variety of tactics to infiltrate business networks, including “phishing emails with malicious attachments.”
Hive has targeted other U.S. health care providers, including Memorial Health System in Marietta, Ohio, which canceled all urgent surgeries and radiology exams following the breach.
The cyberattack at Missouri Delta Medical Center does not appear to involve data from the hospital’s main electronic medical record system and is not affecting its ability to care for patients, the medical center said in a statement.
The city of Sikeston straddles Scott and New Madrid counties, which are experiencing surges in new coronavirus infections. Scott County has had the highest rate of new COVID-19 cases in Missouri over the past week, according to state tracking data.
Missouri Delta Medical Center recently released data on Facebook showing a spike in the number of patients hospitalized with COVID-19. In August, the hospital admitted 79 patients, up from just six in June.
Follow Shahla on Twitter: @shahlafarzan