Healthcare technology solutions provider CareCloud (Nasdaq: CCLD) has disclosed a cybersecurity incident that may have resulted in patient information compromise.<\/p>\n
CareCloud is a New Jersey-based publicly traded company that offers cloud-based software solutions to medical practices, clinics, and hospitals, including for electronic health records, revenue cycle management, practice management, and patient engagement.<\/p>\n
In a March 27 filing<\/a> with the SEC, the company said its network was temporarily disrupted on March 16 due to a cybersecurity incident.<\/p>\n Functionality and data access to one of its six electronic health record environments was affected for roughly 8 hours.<\/p>\n The investigation into the incident is ongoing, with CareCloud attempting to determine whether the hacker accessed or exfiltrated any of the patient information or other data stored in the compromised environment.<\/p>\n CareCloud said the cybersecurity incident was limited to its CareCloud Health environment and \u201cdid not affect other platforms, divisions, systems, data or environments\u201d.\u00a0<\/p>\n Advertisement. Scroll to continue reading.<\/p>\n The company\u2019s assessment at the time of the filing was that the incident did not have a material impact and that any potential losses should be covered by cyberinsurance.\u00a0<\/p>\n The cyberattack was reported to the SEC due to the sensitivity of the potentially compromised information and the possible consequences of the incident, such as reputational damage, legal and regulatory requirements, and incident response costs.<\/p>\n \u201cAll affected systems have been fully restored, and the Company believes that the threat actor no longer has any access to the same,\u201d CareCloud stated.<\/p>\n No known ransomware group appears to have taken credit for an attack on CareCloud at the time of writing, but if it was indeed a profit-driven cybercrime gang it may only name the company on its leak website after it deems that negotiations have failed or stalled.<\/p>\n SecurityWeek has reached out to the company for additional details.<\/p>\n Related: European Commission Reports Cyber Intrusion and Data Theft<\/a><\/p>\n Related: Hightower Holding Data Breach Impacts 130,000<\/a><\/p>\n Related: Extortion Group Claims It Hacked AstraZeneca<\/a><\/p>\n