A threat actor is advertising the sale of 3.5 GB of data, claiming to have “full access” to the systems of Treasure Coast Cardiology and that the data also originates from Medline Europe. The data is being sold on a dark web forum.
The latest list of alleged victims posted by the actor includes:
- Medline Europe (🇪🇺): A major European manufacturer and distributor of medical supplies and healthcare solutions.
- Treasure Coast Cardiology (🇺🇸): A cardiology clinic located in Florida, USA.
According to the actor, the 3.5 GB of data was exfiltrated via legacy Allscripts and GE MUSE databases. The allegedly compromised data includes:
- Full patient Protected Health Information (PHI), including names, dates of birth (DOB), Social Security Numbers (SSN), addresses, and insurance details.
- Overread EKG reports from GE MUSE.
- Medicare claims.
- Internal Allscripts and MBI guides.
