1 min read

Daixin Team targets 10 million Acadian Ambulance records

Caitlin Anthoney July 30, 2024

Healthcare cybersecurity news
Ambulance vehicle on a rural road

Acadian Ambulance faces a severe cybersecurity breach after the Daixin Team claimed to have encrypted up to 2,000 of its servers and threatened to publish sensitive patient data of 10 million individuals unless a $7 million ransom is paid.

 

What happened

On June 21, 2024, the ransomware group 'Daixin Team' encrypted 1,000 to 2,000 servers belonging to Acadian Ambulance, a healthcare service provider across Louisiana, Mississippi, Tennessee, and Texas. 

Despite the severity of the breach, the Acadian Ambulance website and social media do not mention the cyberattack. 

Acadian’s lack of communication contradicts its HIPAA privacy policy, which states,We are required by law to maintain the privacy and security of your protected health information. We will let you know promptly if a breach occurs that may have compromised the privacy or security of your information. 

 

Going deeper

Daixin demanded a ransom of $7 million, while Acadian initially offered less than $173,000, eventually increasing their offer to $572,500. However, negotiations broke down. 

Daixin claims to have the protected health information (PHI) of 10 million individuals, including sensitive data fields from employee records. Daixin also provided screenshots of compromised two-factor authentication (2FA) screens and a list of database tables containing patient and employee information.

 

What was said

According to Acadian’s cyber statement,Because of the systems in place, the steps taken prior to this incident, and the immediate actions of our IT, Compliance, and Operational teams, Acadian was able to continue operations with no negative impact on patient care.”

However,it appears that these threat actors were able to gain access to a secure server containing protected health information, as that term is defined under the Health Insurance Portability and Accountability Act (HIPAA).”

 

Why it matters

As ransomware attacks increasingly target sensitive healthcare data, including PHI, impacting individual patient privacy and the operational stability of healthcare providers like Acadian. These attacks can result in substantial financial losses for healthcare organizations, as well as potential legal and regulatory consequences for HIPAA violations. 

Learn more: HIPAA Compliant Email: The Definitive Guide
Secure every email you send and receive HIPAA compliant. Threat-proof. Hassle-free.
aptihealth logo

Aptihealth business associate's breach affects nearly 20,000 patients

Picture of Tshedimoso Makhene Tshedimoso Makhene : June 22, 2024

A data breach has affected nearly 20,000 patients of behavioral health engagement company Aptihealth.

Healthcare cybersecurity news
Read More
exterior of Refuah health center

NYS clinic fined $450K and ordered to spend $1.2M on security measures

Picture of Tshedimoso Makhene Tshedimoso Makhene : January 11, 2024

The New York attorney general fined the Refuah Health Center up to $450,000 in a settlement regarding a 2021 ransomware attack, requiring the...

Healthcare cybersecurity news
Read More
hacker at laptop surrounded by digital icons

Los Angeles County phishing attack affects more than 200,000

Caitlin Anthoney : June 17, 2024

The personal data of more than 200,000 people in Los Angeles County was potentially compromised after a phishing attack allowed hackers to steal...

Email security Healthcare cybersecurity news
Read More

Subscribe to Paubox Weekly

Every Friday we bring you the most important news from Paubox. Our aim is to make you smarter, faster.