Athens Orthopedic Clinic Still Suffering Effects of 2016 Ransomware Attack

In 2016 the infamous hacking group “thedarkoverlord” (TDO) launched a ransomware attack on the Athens Orthopedic Clinic stealing the data of over 600,000 patients. That data that was stolen included confidential health information and social security numbers. TDO had access to this information for a few months during the summer of 2016 and posted the data on the dark web. After a lawsuit and settlement, the clinic paid $1.5 million for the data breach, but there was still an investigation over HIPAA noncompliance.

During the investigation, it was revealed that the Athens Orthopedic Clinic was not maintaining HIPAA policies and secure agreements with many of their business partners. In addition, the clinic did not provide their employees with updated HIPAA training and they did not have secure network systems to monitor for threats. Due to all of the weaknesses in their system, they implemented a corrective action plan (CAP) with the Office for Civil Rights. Under the new plan, the clinic must revise all relationships and networks to ensure maximum security is being maintained. Lastly, they must review their policies and networks to confirm that they meet current HIPAA and security standards.

See how the AgileBlue Machine Learning + User Behavior Analytics SOC-as-a-Service can keep you safe from a breach, schedule a demo.

Learn more about the impact of this attack.

Written by Gillian Sweny

Gillian is Director of Marketing at AgileBlue with over 13 years of experience in the marketing industry. Gillian resides in Cleveland, OH with her husband and 3-year-old son.



October 8, 2020



Blog Posts

The Future of a Passwordless and Keyless Authentication

by Arielle Miller | Nov 12, 2024

With every data breach and phishing attempt, it’s clear: traditional passwords are failing to keep our data safe. Cybercriminals exploit weak passwords and outdated key-based authentication methods,...

Cyber Insurance vs. Cybersecurity: Understanding the Key Differences

by Arielle Miller | Oct 31, 2024

Cyber threats have become an urgent reality, posing complex challenges for organizations across every sector. As attacks like data breaches and ransomware incidents rise, businesses increasingly...

The Importance of Patch Management

by Arielle Miller | Oct 16, 2024

Leaving vulnerabilities unpatched is like leaving the front door wide open for attackers. Patch management is the crucial process of identifying, acquiring, testing, and installing software...

« Older Entries

Request a Demo

AgileBlue is a software company with an innovative SOC-as-a-Service for 24X7 network monitoring, cloud security, data privacy and compliance.

Our modern SOC-as-a-Service is built on innovative machine learning and autonomous execution. If you would like to discuss our SOC-as-a-Service, Partner Program or schedule a brief demo please give us a little info and we will contact you immediately.

Privacy Overview

This website uses cookies to improve your experience while you navigate through the website. Out of these, the cookies that are categorized as necessary are stored on your browser as they are essential for the working of basic functionalities of the website. We also use third-party cookies that help us analyze and understand how you use this website. These cookies will be stored in your browser only with your consent. You also have the option to opt-out of these cookies. But opting out of some of these cookies may affect your browsing experience.

Necessary

Always Enabled

Necessary cookies are absolutely essential for the website to function properly. These cookies ensure basic functionalities and security features of the website, anonymously.

Cookie	Duration	Description
cookielawinfo-checbox-analytics	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checbox-functional	11 months	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checbox-others	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-performance	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.

Functional

Performance

Analytics

Others