American healthcare firm Henry Schein has reported a second cyberattack this month by the BlackCat/ALPHV ransomware gang, who additionally breached their community in October.
Henry Schein is a Fortune 500 healthcare services supplier with operations and associates in 32 nations and a income of over $12 billion reported in 2022.
It first disclosed on October 15 that it needed to take some techniques offline to include one other cyberattack that impacted its enterprise someday earlier than.
Greater than a month later, on November 22, the corporate stated that a few of its apps and the e-commerce platform had been once more taken down following one other assault claimed by BlackCat ransomware.
“Sure Henry Schein purposes, together with its ecommerce platform, are at the moment unavailable. The Firm continues to take orders utilizing alternate means and continues to ship to its clients,” it stated.
“Henry Schein has recognized the reason for the prevalence. The risk actor from the beforehand disclosed cyber incident has claimed accountability.”
At the moment, the corporate revealed that it has now restored its U.S. e-commerce platform, and it is anticipating that its platforms in Canada and Europe may even be again on-line shortly.
Throughout impacted areas, the healthcare companies supplier is reportedly nonetheless receiving orders by way of different channels and transport to clients.
Henry Schein’s BlackCat breach
The BlackCat ransomware gang added Henry Schein to its darkish net leak web site, saying it breached the corporate’s community and allegedly stole 35 terabytes of delicate knowledge.
In accordance with the cybercrime operation, they re-encrypted the corporate’s gadgets after negotiations faltered in direction of the top of October whereas Henry Schein was on the verge of restoring its techniques.
This may make this month’s incident the third time since October 15 that BlackCat encrypted Henry Schein’s techniques after breaching its community.
“Regardless of ongoing discussions with Henry’s staff, we now have not acquired any indication of their willingness to prioritize the safety of their shoppers, companions, and staff, not to mention defend their very own community,” the risk actors stated.
“As of midnight immediately, a portion of their inside payroll knowledge and shareholder folders can be revealed on our collections weblog. We are going to proceed to launch extra knowledge each day.”
BlackCat emerged in November 2021 and is believed to be a rebrand of the notorious DarkSide/BlackMatter gang. Identified initially as DarkSide, the gang garnered world consideration after hitting Colonial Pipeline, prompting in depth legislation enforcement probes.
The FBI related the ransomware group to over 60 breaches affecting organizations globally between November 2021 and March 2022.
A Henry Schein spokesperson has but to answer BleepingComputer’s requests for remark relating to the cyberattacks disclosed this month.
