Recently, a medical software firm in Germany called Medatixx released an advisory that urges its clients to reset their application passwords because of a discovered ransomware attack in their system that caused grievous wounds in their daily operations.
The software firm insisted that the effect of the ransomware has not reached their clients and only affected their IT system and should not hinder their practice management systems.
Contrary to what the firm said about the ransomware not reaching their clients, there is still no substantial knowledge of what data was stolen during the attack. The malicious threat actors may or may not have gathered the Medatixx customers’ passwords. Because of that, Medatixx is still requesting customers to conduct a password reset in their application accounts despite claiming that the impact of the attack has not reached any current customers.
Furthermore, the medical software company elaborated that resetting passwords is a precautionary measure only and not because the ransomware attack has stolen password data of their customers, which is seemingly sketchy.
The ransomware attack still lingers inside of Medatixx.
Medatixx suffered a ransomware attack last week, and they are still recovering until now. As of now, they are still managing to restore and retrieve central telephone systems and emails. Moreover, regional sales reps and customer support hotlines are operational, so customers and clients can contact the company to inquire about any details that they want to know.
However, there is still no precise timestamp on when the medical software firm’s operation will be regular again.
Lastly, it has not been confirmed if the malicious threat actors exfiltrated any patient, client, or doctor data, but the firm said they already reached out to Germany’s data protection team. They are also added that they will issue an update after the investigation.
According to some research, Medatixx firm utilised 25% of all existing medical centres inside Germany, and by far, this is the most significant cyberattack ever to hit the German healthcare system.
On the other hand, German media outlets are still speculating about the possibility of threat actors exfiltrating users’ credentials via remote systems. The situation has worsened since German healthcare institutions are still dealing with the effects of the Covid-19 pandemic.