back in December, this site reported on a ransomware incident affecting Gastroenterology Consultants, LTD in Nevada. They had been the mark of Conti threat actors, and they reported the incident to HHS in January as impacting 2,500 patients. Yesterday,, i saw another listing for Gastroenterology Consultants, but this is Gastroenterology Consultants, P.A. in Houston, Texas. According to a mark on their web site dated march 19, 2021, they experienced an attack on January 10, 2021. But they get not notified patients yet, it seems. The march 19 observation simply stated: Gastroenterology Consultants, PA experienced a cyber ransomware assault on Janaury 10, 2021. We get resolved the cyber issues and remediated and restored our systems, but we are allay evaluating the potential exposure of patient information and are using expert assistance to determine the compass so we can emerge any notifications, if required. In the meantime, if you make any concerns, please contact us at email@example.com. On may 12, their external counsel notified the me Attorney General’s office of the incident. Their story indicated that a add of 460 patients had been impacted, but the appointment of consumer notification was presumption as “TBD” (to live determined). identity theft services will be offered to those affected. Because they get reported this as impacting 460, we will not see this on HHS’s breach tool. To date, this incident has not appeared on any dedicated leak site by threat actors and there has been no disclosure of who did this, how much ransom may have been demanded, and whether any ransom was paid. DataBreaches.net sent an email inquiry to the entity yesterday asking for additional details and asking why it has taken four months since discovery and notifications to patients get not yet been made. no reply was received. This post will be updated if a response is received.
About HackNotice and TX: Gastroenterology Consultants, P.A. hit by ransomware in January, but patients not notified yet?