As a business owner, the last thing you want to hear is that a mental health provider like Brightline has experienced a data breach, affecting 783,606 people. The attackers, known as the Clop ransomware gang, took advantage of a zero-day vulnerability in the Fortra GoAnywhere MFT secure file-sharing platform to steal sensitive data.
A Lesson for All Business Owners
Brightline is a company that offers virtual counseling for children, teenagers, and their families. In a recent data security notice, they confirmed that protected health information was stolen from their GoAnywhere MFT service. The Clop ransomware gang, responsible for the attack, has allegedly used this vulnerability to steal data from 130 companies since January 18th, 2023.
When Brightline’s name appeared on the Clop extortion portal on March 16th, 2023, it became clear that they were one of the many businesses affected by this large-scale attack. The company’s internal investigation revealed that the stolen data included:
- Full names
- Physical addresses
- Dates of birth
- Member identification numbers
- Date of health plan coverage
- Employer names
Fortunately, Aetna member IDs were not compromised in this incident.
Immediate Action and Future Prevention
Upon discovering the breach, Brightline took swift action. They confirmed that Fortra deactivated the unauthorized user’s credentials, turned off the service, and rebuilt their version to no longer be vulnerable. Additionally, they implemented further security measures, such as limiting access to verified users, removing all their data from the service, and working on reducing data exposure until an alternative file transfer solution is identified and implemented.
As a result of this security incident, many well-known organizations in the U.S., including Diageo, Nintendo of America Inc., Harvard University, Stanford University, and Boston Children’s Hospital, have also been affected. You can find the complete list of impacted entities here.
According to the U.S. Department of Health and Human Services, the breach has impacted a total of 783,606 people. However, this number may increase as internal investigations progress. To help those affected, Brightline offers two years of complimentary identity theft and credit monitoring services via Cyberscout.
What This Means for You
As a business owner, it’s essential to stay informed about cybersecurity threats and take action to protect your company and customers. Data breaches can happen to any business, regardless of size or industry. This incident highlights the importance of having a robust cybersecurity strategy in place.
At ZZ Servers, we understand the challenges businesses face when it comes to cybersecurity. Our team of experts is here to help you navigate the complex landscape of securing your data and maintaining a strong defense against cyber attacks. Contact us today to learn how we can assist you in protecting your business and customers from potential threats.
