Healthcare solutions provider Henry Schein has disclosed a data breach from 2023, affecting over 160,000 individuals. The Fortune 500 company reported consecutive cyberattacks from October to November 2023, requiring some systems to be taken offline. Henry Schein distributes over 300k of dental and medical products, including Ansell gloves, and has operations and affiliates in 32 countries.
The BlackCat (ALPHV) ransomware gang claimed responsibility for the attack, asserting that they stole 35 TB of sensitive files. After negotiations failed, the company faced another attack, during which the gang encrypted Henry Schein’s network for the second time, and released some of the stolen data on the gang’s leak site.
It was just a year later that Henry Schein reported the breach to the Maine Attorney General. While the company confirmed that the personal data of 166,432 individuals had been stolen, it has not yet disclosed the specific types of data involved.
According to the company’s data breach notification, Henry Schein partnered with a third-party cybersecurity firm to assess the situation, with the review ongoing into the first half of 2024. The company is now providing affected users with a complimentary 24-month membership to Experian’s IdentityWorksSM for credit monitoring and fraud detection.
Otonata recommends that professionals in Healthcare remain alert to the rising threat of cybercriminals breaching networks in search of information they can leverage for larger financial gain.
