The biotechnology company Enzo Biochem recently suffered a ransomware attack last April, resulting in a data security breach and the loss of the personal data owned by more than 2.5 million individuals.
This biotech firm in New York stated that on April 6, it suffered a ransomware attack that included the unwanted intrusion and acquisition of clinical test information owned by millions of patients and relevant individuals.
The impacted organisations were able to remain operating but discovered days later that the threat actors reached basic information, such as names, test data, and around 600,000 Social Security numbers. In addition, the ransomware attack has also harvested some of the company’s information technology systems in other parts of the campaign.
Currently, the company assured the US government that they would comply with the law and disseminate notification letters to the affected individuals and regulators.
No ransomware group has yet to take credit for the Enzo hack attack.
An initial investigation revealed that no ransomware group had claimed the attack on Enzo Biochem. On the other hand, the company emphasised that it disconnected its systems from the internet, employed a third-party security team, and notified relevant law enforcement agencies about the incident.
Additionally, the biotech firm claimed that they would continue to investigate and expect that they will have to spend more funds to remediate the situation.
Researchers believe the company will remain subject to risks because of the cybersecurity issue and the compromise against its sensitive data.
Furthermore, experts explained that these security and privacy issues commonly result in additional regulatory scrutiny, which could taint a company’s brand. Fortunately, the company is still in the process of assessing and evaluating the entire scope of the costs and related dangers of the issue. Hence, depending on the findings, the attack could still be a minor hiccup.
The company reported earning over $32 million in annual revenue last year. This biotechnology company became the latest addition to the list of medical sciences companies that leaked patient data in the past months because of a ransomware attack.
