DataBreaches.Net

Menu
  • About
  • Breach Notification Laws
  • Privacy Policy
  • Transparency Report
Menu

Gateway Rehab issues notice about June ransomware incident

Posted on November 19, 2022 by Dissent

On July 8, DataBreaches reported that Gateway Rehab in Pennsylvania had apparently become the victim of a ransomware attack by Blackbyte. DataBreaches’s report included redacted screenshots of files sensitive protected health information that had been leaked on the threat actors’ leak site. Gateway had not responded to inquiries from this site nor posted any notice on their own site at the time, and no report from Gateway had shown up on HHS’s public breach tool by then or even since then.

On November 18, Gateway Rehab issued a public notice. Their notice confirmed that they first discovered the incident in June, and by July 8 had confirmed that protected health information was involved. Specifically, the following data types may have been accessed or acquired: name, date of birth, Social Security number, driver’s license or state ID number, financial account and/or payment card number, medical information and health insurance information.

Their notice also includes this statement: “Gateway Rehab has no evidence that any of this information has been misused.”

No evidence that it has been misused? How would it know? Has it been using a consultant firm to run dark web searches and monitoring? What happened to the data that is no longer on Blackbyte’s leak site? Was it sold? Shared with others?

Why didn’t Gateway Rehab tell patients that their data was actually dumped publicly on the dark web? They didn’t even tell them that this was a ransomware incident — they called it a “data security incident.” It was (a data security incident), but the fact that the threat actors were financially motivated and leaking data might factor into someone’s assessment of their risk of harm and whether they need to take steps to protect themselves.

Gateway’s notice did not indicate how many patients had their personal and protected health information caught up in the incident, and so far, there has been no listing of this incident on HHS’s public breach tool from Gateway Rehab. Now that they have issued a public notice, however, the listing may soon appear on HHS’s website.

November 21:  Gateway has been added to HHS’s public breach tool as impacting 130,000 patients.

Related posts:

  • A community health provider in Vermont and an addiction rehab organization in Pennsylvania fall prey to BlackByte
  • “Without Undue Delay,” Part 2
  • The Ransomware Superhero of Normal, Illinois
Category: Breach IncidentsHealth DataMalwareU.S.

Post navigation

← San Gorgonio Memorial Hospital Back Online After Malware Attack
Indian govt Govt plans penalty of up to Rs 500 crore for data breach →

Now more than ever

"Stand with Ukraine:" above raised hands. The illustration is in blue and yellow, the colors of Ukraine's flag.

Search

Browse by Categories

Recent Posts

  • Northern Light Health patients affected by security incident at Compumedics; 10 healthcare entities affected
  • Privacy commissioner reviewing reported Ontario Health atHome data breach
  • CMS warns Medicare providers of fraud scheme
  • Ex-student charged with wave of cyber attacks on Sydney uni
  • Detaining Hackers Before the Crime? Tamil Nadu’s Supreme Court Approves Preventive Custody for Cyber Offenders
  • Potential Cyberattack Scrambles Columbia University Computer Systems
  • 222,000 customer records allegedly from Manhattan Parking Group leaked
  • Breaches have consequences (sometimes) (1)
  • Kansas City Man Pleads Guilty for Hacking a Non-Profit
  • British national “IntelBroker” charged with causing $25 million in damages; U.S. seeks his extradition from France

No, You Can’t Buy a Post or an Interview

This site does not accept sponsored posts or link-back arrangements. Inquiries about either are ignored.

And despite what some trolls may try to claim: DataBreaches has never accepted even one dime to interview or report on anyone. Nor will DataBreaches ever pay anyone for data or to interview them.

Want to Get Our RSS Feed?

Grab it here:

https://databreaches.net/feed/

RSS Recent Posts on PogoWasRight.org

  • Germany Wants Apple, Google to Remove DeepSeek From Their App Stores
  • Supreme Court upholds Texas law requiring age verification on porn sites
  • Justices nix Medicaid ‘right’ to choose doctor, defunding Planned Parenthood in South Carolina
  • European Commission publishes its plan to enable more effective law enforcement access to data
  • Sacred Secrets: The Biblical Case for Privacy and Data Protection
  • Microsoft’s Departing Privacy Chief Calls for Regulator Outreach
  • Nestle USA Settles Suit Over Job-Application Medical Questions

Have a News Tip?

Email: Tips[at]DataBreaches.net

Signal: +1 516-776-7756

Contact Me

Email: info[at]databreaches.net

Mastodon: Infosec.Exchange/@PogoWasRight

Signal: +1 516-776-7756

DMCA Concern: dmca[at]databreaches.net
© 2009 – 2025 DataBreaches.net and DataBreaches LLC. All rights reserved.