You can now find Cyber Kendra on Google News!

Hackers Exploited HeartBleed Vulnerability in Community Health Systems Hacking

Hackers Exploited Heart Bleed Vulnerability in Community Health Systems Hacking, Community Health Systems Hacking, Hackers Exploited Heart Bleed Vulnerability, hacking via HeartBleed,
HeartBleed Vulnerability, Community Health Systems Hacking, CHS hacked, data Breached
On Monday, 18 August, it was revealed by US hospital operator Community Health Systems that they have been suffered from data breached. In this breach hackers have stolen the personal data of the hospitals employee and of patience too that includes patient names, addresses, birth data, phone numbers and Social Security numbers.

The company says the data was stolen in attacks that occurred between April and June 2014 and the hackers gained access to data from anybody who was referred for or received services from any doctor affiliated with Community Health Systems. Company also mentioned that in this hack attacker did not gain access to any medical records.

This attack has affected 4.5 million people who have been subjected to service from this hospital group in last five years. Healthcare providers were warned by FBI in April about their cybersecurity systems' vulnerability.

Company had worked with FireEye unit Mandiant, and according to the ivestigation report of the Mandiant, it says that the attack originated from China and that the hackers used “highly sophisticated malware and technology to attack the Company’s systems.”

But now new report of Bloomberg says, Chinese hackers used the Heartbleed security flaw to steal personal data belonging to 4.5 million patients of Community Health Systems Inc.
“We never had any tangible proof of an attack until now,” David Kennedy, founder of TrustedSec LLC, a Cleveland, Ohio-based security consulting company, told Bloomberg. Kennedy, who first reported that Heartbleed was used to attack Community Health, said he obtained the details of the hack from “a trusted and anonymous source” close to the investigation.
The Heartbleed flaw, which was publicly disclosed on April 7, allows hackers to steal secret keys that are used to encrypt user names, passwords and other digital data. Following the bug's discovery, many companies and security researchers were forced to build fresh safeguards to protect their computer networks.

Post a Comment