UK healthcare giant HCRG confirms hack after ransomware gang claims theft of sensitive data

Topics

Latest

AI

Amazon

Image Credits:Mike Kemp/In Pictures / Getty Images

Apps

Biotech & Health

mood

Cloud Computing

Commerce

Crypto

Enterprise

EVs

Fintech

Fundraising

gadget

gage

Google

Government & Policy

Hardware

Instagram

layoff

Media & Entertainment

Meta

Microsoft

secrecy

Robotics

Security

societal

Space

inauguration

TikTok

Department of Transportation

Venture

More from TechCrunch

Events

Startup Battlefield

StrictlyVC

Podcasts

video

Partner Content

TechCrunch Brand Studio

Crunchboard

Contact Us

U.K. health care goliath HCRG Care Group has confirmed it ’s investigate a cybersecurity incident after a ransomware gang claimed to have breached the company ’s systems to slip trove of sore data point .

HCRG Care Group is one of the largest independent providers of community of interests health and care service in the United Kingdom . The organization , previously known as Virgin Care and now own by Twenty20 Capital , partners with National Health Service trusts and local authorisation around the U.K. to turn in health care services , including urgent care , sexual wellness , and adult and shaver societal care service .

HCRG was this week listed on the drear web leak site of the fecund Medusa ransomware group , which claims to have compromise the fellowship to steal more than two terabytes of data .

sample of the allegedly stolen data shared by Medusa and seen by TechCrunch seem to include employees ’ personal information , tender medical records , financial records , and government identification documents , such as passports and nativity certificates .

HCRG spokesperson Alison Klabacher told TechCrunch in an emailed financial statement that the company is “ currently investigate an IT certificate incident ” and has “ recently identify a place on the dark WWW by a chemical group claiming responsibility . ”

The company reject to say what types of data were accessed but did not gainsay Medusa ’s claim . HCRG also decline to say how many individuals are affected . fit in to the troupe ’s site , HCRG has more than 5,000 employee and delivers healthcare services to half a million patients across the United Kingdom .

“ Our squad has not notice any suspicious bodily function since the implementation of immediate containment measures , and we are working with outside forensic specialists to investigate the incident , the spokesperson said .

Join us at TechCrunch Sessions: AI

Exhibit at TechCrunch Sessions: AI

HCRG said it inform the U.K. ’s Information Commissioner ’s Office and other regulator about the breach .

“ Our Service are continuing to operate and safely see patients , and those with appointments or who need to get at our services should uphold to do so , ” the companionship suppose .

The Medusa ransomware group is threatening to publish the allegedly stolen data point unless HCRG pays the gang a ransom demand of $ 2 million .

HCRG would n’t affirm how it was compromised , but Medusa is know to exploitunpatched vulnerabilities in distant desktop software .