Texas Tech University Health Sciences Center Data Breach Exposes 1.4 Million Patient Records

2024-12-17

Learn about the critical need for robust cybersecurity measures in healthcare institutions and how Check Point solutions can help prevent data breaches and protect sensitive patient data.

The Texas Tech University Health Sciences Center experienced a cyberattack in September 2024, affecting 1.4 million patients by potentially exposing sensitive information, including personal and medical data. The Interlock ransomware group claimed responsibility, leaking 2.6 TB of data on the dark web. Affected individuals are being notified and offered credit monitoring services, while being advised to stay alert for potential scams.

Key Facts

Risks:

Sensitive Data, Ransomware

Keywords:

Texas Tech, Health Sciences Center, Data Breach, Ransomware, Interlock, Patient Data

CVE:

N/A

Affected:

Texas Tech University Health Sciences Center, Texas Tech University Health Sciences Center El Paso

Article Body

Texas Tech University Health Sciences Center Data Breach Affects 1.4 Million Patients

In September 2024, the Texas Tech University Health Sciences Center, along with its El Paso counterpart, experienced a significant cyberattack that resulted in the potential exposure of sensitive information belonging to 1.4 million patients. This breach highlights the vulnerabilities in the healthcare sector and underscores the importance of robust cybersecurity measures.

Incident Overview

The cyberattack led to a temporary disruption of several computer systems and applications within the organization. The Texas Tech University Health Sciences Center, which is an academic health institution under the Texas Tech University System, quickly took action to secure its network upon discovering the issues. An investigation confirmed that the breach occurred between September 17 and September 29, 2024, during which certain files and folders were accessed or removed by unauthorized individuals.

Data Exposed

The data compromised in this breach included a wide range of sensitive personal and medical information. This information varies by individual but may include:

Full names
Dates of birth
Physical addresses
Social Security numbers
Driver's license or government ID numbers
Financial account details
Health insurance information
Medical and billing/claims data
Diagnosis and treatment details

Response and Mitigation

Those affected by the breach are being notified and offered free credit monitoring services to help mitigate potential risks. Impacted individuals are advised to remain vigilant by monitoring their credit reports and health insurance billing statements for any suspicious activity. Reporting any anomalies to the authorities is also recommended to prevent further misuse of their information.

Ransomware Group Involvement

The ransomware group Interlock claimed responsibility for the attack on October 27, 2024. This group, known for targeting FreeBSD servers and Windows systems, leaked approximately 2.1 million files, amounting to 2.6 TB of data, on their dark web extortion portal. Interlock's ransom demands can range from hundreds of thousands to millions of dollars, depending on the organization's size.

This incident serves as a critical reminder of the growing threats facing healthcare institutions and the need for comprehensive cybersecurity strategies to protect sensitive data.

https://www.bleepingcomputer.com/news/security/texas-tech-university-system-data-breach-impacts-14-million-patients/