On September 23, DataBreaches reported that the NoEscape ransomware gang had added Mulkay Cardiology Consultants (Mulkay) in New Jersey to their leak site with a date of September 2. At the time, they claimed to have successfully encrypted them and exfiltrated 60 GB of files.
“We have 60GB of confidential and personal data on more than 30,000 patients, scans, doctor’s conclusions about patients and many other confidential information,” they claimed in their listing about the New Jersey medical practice.
As DataBreaches also reported, a “DDoS” tag was subsequently added to the listing on September 19, and when DataBreaches attempted to connect to Mulkay’s site, it returned a 508 error. But on September 23, Mulkay’s website was reachable again and their listing had been removed from NoEscape’s leak site.
On re-check today, Mulkay’s site is reachable. There is no notice on it about any data breach or cyberattack. But their listing has been re-added to NoEscape’s leak site. And this time, there is a small file-tree listing files allegedly from the cardiology group’s Hackensack office. There are also images showing patient records with protected health information.
At this point, it appears that Mulkay has had a reportable HIPAA breach, but Mulkay has not disclosed anything publicly as yet and has not confirmed any breach.
DataBreaches will continue to follow this alleged incident and will provide updates when more information becomes available.