Athens Orthopedic Clinic Still Suffering Effects of 2016 Ransomware Attack

In 2016 the infamous hacking group “thedarkoverlord” (TDO) launched a ransomware attack on the Athens Orthopedic Clinic stealing the data of over 600,000 patients. That data that was stolen included confidential health information and social security numbers. TDO had access to this information for a few months during the summer of 2016 and posted the data on the dark web. After a lawsuit and settlement, the clinic paid $1.5 million for the data breach, but there was still an investigation over HIPPA noncompliance.

During the investigation, it was revealed that the Athens Orthopedic Clinic was not maintaining HIPPA policies and secure agreements with many of their business partners. In addition, the clinic did not provide their employees with updated HIPPA training and they did not have secure network systems to monitor for threats. Due to all of the weaknesses in their system, they implemented a corrective action plan (CAP) with the Office for Civil Rights. Under the new plan, the clinic must revise all relationships and networks to ensure maximum security is being maintained. Lastly, they must review their policies and networks to confirm that they meet current HIPPA and security standards.

See how the Agile1 Machine Learning + User Behavior Analytics SOC-as-a-Service can keep you safe from a breach, schedule a demo.

Learn more about the impact of this attack.

Written by Gillian Sweny

Gillian is Director of Marketing at AgileBlue with over 10 years of experience in the marketing industry. Gillian resides in Cleveland, OH with her husband and 2-year-old son.

October 8, 2020

You May Also Like…

Top January 2023 Cyber-Attacks

Top January 2023 Cyber-Attacks

It’s the end of January 2023, and the numbers are in– below is a list of the most malicious cyber-attacks over the last month.    As reported by Kon Briefing, cyber-attacks have affected more than...

read more

Request a Demo

AgileBlue is a software company with an innovative SOC-as-a-Service for 24X7 network monitoring, cloud security, data privacy and compliance.

Our modern SOC-as-a-Service is built on innovative machine learning and autonomous execution. If you would like to discuss our SOC-as-a-Service, Partner Program or schedule a brief demo please give us a little info and we will contact you immediately.