Data of 2.47 Million Individuals Exposed in Enzo Biochem Ransomware Attack
In a recent Form 8-K filing with the US Securities and Exchange Commission (SEC), Enzo Biochem revealed that clinical test information of nearly 2.4 Million individuals was compromised in the April 2023 ransomware attack.
Enzo Biochem is a US-based medical sciences company that specializes in producing and marketing DNA-based tests to detect infectious and transmissible diseases.
The cyberattack prompted the company to launch an immediate investigation which revealed that around 2,470,000 individuals’ clinical test data was accessed and exfiltrated by unknown threat actors. The investigation which was carried out with the help of external cybersecurity experts revealed that compromised information included individuals’ names, test information, and in some instances their Social Security numbers (around 600,000).
In the SEC filing, the company also revealed that it’s trying to determine whether employees’ information was also a part of this breach. If any such discovery is made, Enzo will notify the impacted individuals and concerned regulatory authorities.
Adhering to its disaster recovery plan, Enzo Biochem also deployed containment measures, including disconnecting affected systems from the internet and notifying appropriate law authorities. These measures helped the company avoid disruption in business operations and enabled continuous delivery of services to its patients and partners.
However, the company stated that it has incurred and is expecting more expenses in relation to this cyberattack. ‘’certain expenses related to this attack, including expenses to respond to, remediate and investigate this matter,’’ noted Enzo Biochem.
Moreover, the attack and data breach has also exposed the company to certain risks and uncertainties, and in days to come, it is expecting increased scrutiny from regulatory authorities.
In recent months the healthcare industry has been witnessing a spate of ransomware attacks, resulting in the theft of sensitive personal and financial information. Just last week US-based MCNA revealed that its network had been compromised and personal data of 8.9 Million customers were stolen in the data breach incident.
Leave a Comment
Cancel