The ransomware group known as RansomHub is leaking data allegedly stolen from the Florida Department of Health.
The cybercriminal group added the agency to its Tor-based leak site on July 2, claiming to have stolen over 100 gigabytes of data from its network, including personally identifiable information (PII) and protected health information (PHI).
RansomHub began publishing the allegedly stolen information over the weekend, after the Florida DOH missed a Friday deadline the gang set for receiving a ransomware payment in exchange for not releasing the data.
Under Florida law, government entities are prohibited from making ransom payments, so the missed deadline should not come as a surprise.
The leaked data reportedly includes service-related files, employee records, passport scans, prescriptions, health programs applications, screening results, family planning forms, dental services data, various correspondence, and more.
Potentially compromised PII and PHI includes names, addresses, phone numbers, dates of birth, Social Security numbers, appointment details, health insurance information, medical record numbers, screening results, health policy numbers, and more.
The Florida Department of Health last week confirmed it was dealing with a cybersecurity incident, without providing further information on the attack.
The incident disrupted multiple services within the department, including the online system used for birth and death certificates issuance.
ADVERTISEMENT. SCROLL TO CONTINUE READING.
SecurityWeek has contacted the Florida DOH for additional information on the incident and will update this article if additional information is received.
Responsible for the recent attacks on Frontier Communications and Christie’s, RansomHub was the third most active ransomware group in May, accounting for 22 incidents.