Ransomware group NoEscape claims responsibility for a cyberattack on the IT infrastructure of PruittHealth, a private healthcare organization based in Norcross, GA, in Gwinnett County. They threaten to release a vast amount of exfiltrated data (1.5TB) if not contacted by a negotiator from PruittHealth within the next three days.
With over 13,000 employees and a revenue of $1.3 billion, PruittHealth operates within a network of 180 healthcare facilities across Florida, Georgia, North Carolina, and South Carolina. According to a report by PruittHealth itself, they provide integrated services to 24,000 patients daily, covering:
– Skilled Nursing and Rehabilitation Centers
– Assisted Living Centers and Independent Living Communities
– Home Health and Hospice Services
– Veterans Services
– Home First and Community Services
– Pharmacy and Medical Supply
NoEscape has released a statement claiming that on November 13th, they successfully infiltrated PruittHealth’s IT systems, exfiltrating 1.5TB of confidential and highly sensitive corporate data. The ransomware group states that they have already sent thousands of emails providing information about the data theft, with at least 400 of them pertaining to corporate emails. NoEscape also claims to have made a telephone contact with Randall Loggins, Chief Financial Officer (CFO) of PruittHealth.
On Nov 13, we successfully carried out a large-scale attack on the PruittHealth network.
We exfiltrated over 1.5TB of confidential and highly sensitive company data.
Within 3 days, we sent thousands of emails to more than 400 corporate mails, and also notified Randall Loggins Chief Financial Officer and the nursing department about this incident by phone call.
In the statement published on the cybercriminals’ blog, NoEscape declares to be in possession of the cyber insurance policy (2023-2024 with a premium of over $500,000) that the healthcare organization has taken out with an insurance company based in the Cayman Islands. In the event of a cyberattack, the policy also includes coverage for damages resulting from extortion threats, with a maximum coverage amount of $15,000,000.
We contacted NoEscape and PruittHealth via email seeking a statement on the case, but as of now, we have not received any response.
SuspectFile will update the article in case of any new developments.