Healthcare solutions giant Henry Schein is once again restoring systems after a ransomware group that targeted the company claimed it had re-encrypted files when negotiations stalled.
An attack has disrupted manufacturing and distribution operations
On October 15, Henry Schein made a shocking revelation that its manufacturing and distribution businesses had fallen victim to a cyberattack. This attack resulted in significant disruptions to the company’s operations. The impact was far-reaching, causing concern among both customers and suppliers alike.
Ransomware groups Alphv and BlackCat claim responsibility for the attack
Taking credit for the attack was a notorious ransomware group that goes by the name Alphv and BlackCat. This group specializes in targeting organizations in the healthcare sector, seeking to exploit their vulnerabilities and demanding hefty ransoms in return for restoring access to encrypted files. Their modus operandi involves not only encrypting data but also stealing sensitive information during the attack.
Data breach confirmed, sensitive information possibly stolen
Henry Schein’s subsequent investigation confirmed everyone’s worst fears: a data breach had indeed occurred. The attackers had likely exfiltrated sensitive customer and supplier information, including personal details, bank account numbers, and payment card information. This revelation only amplified the concerns and anxieties of those associated with Henry Schein.
Negotiations stall, leading to the re-encryption of files
Although negotiations initially commenced with the ransomware group to potentially retrieve the stolen data and regain control of the encrypted files, progress reached an impasse. Alpha and BlackCat boldly declared in early November that they were re-encrypting the files just as Henry Schein was on the verge of restoring its systems. This move was a severe blow to the company’s efforts to recover from the attack.
Update reveals applications and ecommerce platform temporarily unavailable
The repercussions of the ransomware attack continued to reverberate as Henry Schein provided an update on November 22. They disclosed that their applications, including their crucial e-commerce platform, had become unavailable due to actions conducted by the same threat actor. This development created additional obstacles for the company in its attempts to resume normal operations and restore customer confidence.
Disruptions are expected to be short-term, with systems set to be restored soon
Despite the setbacks encountered, Henry Schein remained optimistic, assuring customers that the disruptions were expected to be short-term. The company’s dedicated teams were working tirelessly to resolve the issues at hand and restore their systems promptly. It was a testament to their commitment and resilience in the face of adversity.
Henry Schein is no longer listed on the BlackCat Leak website
As a potential sign of progress, Henry Schein was no longer listed on the BlackCat leak website at the time of writing. This positive development hinted at the possibility that negotiations may have resumed and potentially even indicated that a ransom had been paid. While the details surrounding the turnaround remain shrouded in secrecy, it provided a glimmer of hope for Henry Schein and its stakeholders.
Henry Schein: Providing business, clinical, supply chain, and technology solutions
Headquartered in Melville, New York, Henry Schein has emerged as a vital provider of comprehensive solutions for dental and other medical organizations. With a workforce of over 23,000 dedicated employees, the company’s range of services encompasses business management, clinical support, supply chain solutions, and cutting-edge technology integration. Their broad reach allows them to serve a vast network of more than one million customers worldwide.
The ransomware attack on Henry Schein brought significant disruption and hardship to the healthcare solutions provider and its stakeholders. Facing the challenges head-on, the company’s relentless efforts to restore systems and resolve the matter showcased their determination to protect and serve their customers. As the restoration process continues, one can only hope that Henry Schein manages to fully recover from this ordeal and emerge stronger and more fortified against future cyber threats.