Lehigh Valley Health Network says it has been the target of a cyberattack.
A ransomware gang known as BlackCat with ties to Russia attacked the network that supports a doctor’s office in Lackawanna County, according to a statement from LVHN president and CEO Brian Nester.
LVHN is still investigating the extent of the attack, but said as of Monday it has not disrupted LVHN’s operations and all facilities are operating normally.
The health network discovered unauthorized activity in its IT system on February 6.
Initial investigations indicate the attack involved a computer system used for patient images for radiation oncology treatment, LVHN said. BlackCat demanded a ransom, but LVHN refused to pay.
The investigation into the attack and the information involved is ongoing and LVHN said it will notify patients if necessary.
Read the full statement from LVHN below:
“Lehigh Valley Health Network (LVHN) has been the target of a cybersecurity attack by a ransomware gang known as BlackCat associated with Russia. To date, the attack has not disrupted LVHN’s operations. Based on our initial analysis, the attack was on the network supporting a physician practice in Lackawanna County We take this very seriously and protecting the data security and privacy of our patients, physicians and staff is critical.
“On February 6, LVHN discovered unauthorized activity within our IT system. Our technology team identified the unauthorized activity and we immediately launched an investigation, engaging leading cybersecurity firms and experts, and notifying law enforcement. We continue to work with our experts to investigate the magnitude of the incident and as of today we will continue to operate normally.
“While our investigation is ongoing, our initial analysis shows that the incident involved a computer system used to provide clinically appropriate patient images for radiation, oncology treatment and other sensitive information. BlackCat demanded a ransom, but LVHN refused to pay this criminal .” We understand that BlackCat has turned to other organizations in the academic and healthcare industries.
“We continue to work closely with our cybersecurity experts to evaluate the information involved and will notify individuals as soon as possible. Attacks like this are reprehensible and we are deploying appropriate resources to respond to this incident.”
Leave a Reply