Utah Cyber Attacks

Infrastructure Affected

Public Safety
Government
Medical
Education
 
Back to Archive
Utah.jpg
 

Public Safety

ODIN Intelligence website is defaced as hackers claim breach, St. Lake County

Breach Type – Hacking, Data Breach

TechCrunch

  • ”The website for ODIN Intelligence, a company that provides technology and tools for law enforcement and police departments, was defaced on Sunday. The apparent hack comes days after Wired reported that an app developed by the company, SweepWizard, which allows police to manage and coordinate multi-agency raids, had a significant security vulnerability that exposed personal information of police suspects and sensitive details of upcoming police operations to the open web."
  • "The text of the defacement is ambiguous as to whether the hackers exfiltrated data from ODIN’s systems or if, as it claims, “all data and backups have been shredded,” suggesting that there may have been an attempt to erase the company’s stores of data.”
  • ”Emma Best, co-founder of... DDoSecrets, told TechCrunch that data was exfiltrated from ODIN’s servers and that the organization was in possession of it. “We received the data the other day and are processing it,” Best said.”
  • ”The defacement note made note of three large archive files, totaling more than 16 gigabytes of data, each named in relation to ODIN’s organization, the sex offenders’ data, and the SweepWizard app. The hackers also left hashes, a unique string of letters and numbers that serve as a signature for each file. Best confirmed that the files that DDoSecrets received matched the hashes in the defacement post.”
  • ”The defacement also included a set of Amazon Web Services keys, apparently belonging to ODIN. TechCrunch could not immediately confirm that the keys belong to ODIN, but the keys apparently correspond with an instance on AWS’ GovCloud, which houses more sensitive police and law enforcement data.”
Read More

 
BACK TO TOP

Local Government

Garfield County

Breach Type - Phishing, Ransomware

Fox 13 Now

  • A phishing email launched a ransomware attack affecting a number of county offices
  • Several files were missing and eventually an email was received that the files were being held for ransom
  • FBI got involved and in the end the ransom was paid in an attempt to restore processes
Read More

 
San Juan Co. & Emery Co.

Breach Type - Phishing

Deseret News

  • Spear-phishing hits San Juan Co. For $48,000
  • Hits Emery County for $40,000
  • Auditor's office sent warnings to public agencies across state of Utah
  • There were no attempts to cover up financial records/transfers, treasurer's realized their mistake
Read More

 
BACK TO TOP

Medical

582k patients suffered a data breach at a medical center, Utah Imaging Associates, Davis County

Breach Type – Hacking, Data Breach

The Digital Hacker

  • "A medical center in Utah, namely, Utah Imaging Associates (UIA), suffered a very hefty data breach exposing the data of nearly 582000 patients."
  • "…the initial network infiltration happened on August 29, 2021, allowing the threat actors to explore UIA’s internal systems and potentially steal data for about a week."
  • “cybersecurity research firm said in a report that the hackers had access to the personal information of the patients."
  • "The data includes the first and last name of the patients, mailing address, date of birth, Social security number, health insurance policy number, and some medical information."
Read More

 
12,000 patients' records exposed in 45-minute email hack of Utah physicians' group, Utah County

Breach Type – Phishing, Data Breach

Becker Hospital Review

  • "Revere Health began notifying about 12,000 patients that their medical records had been exposed in a recent email phishing attack"
  • "The email account of one of the physician group's employees was breached for about 45 minutes June 21, which exposed some medical records of patients of the Heart of Dixie cardiology department in St. George, Utah"
  • "Revere Health concluded that about 12,000 patients were affected. It said medical record numbers, birth dates, provider names, procedures and insurance provider names were exposed — but not shared online."
Read More

 
Astro Team Claims Data Exfiltration from Eduro Healthcare

Breach Type – Unknown, Ransomware

DataBreaches.net

  • On April 7, a relatively new group of threat actors called Astro Team added Eduro Healthcare to their dedicated leak site, claiming to have exfiltrated 40 GB of data
  • On April 23, Astro Team dumped all the data, presumably because Eduro failed to pay unspecified ransom demands
  • The data dumped includes what appears to protected health information... include patient names, health insurance information, date of birth, diagnoses, and treatment codes, as well as dates of services and amounts. Financial statements related to named patients for 2015-2018 were included in the dump
Read More

 
Utah Pathology Services, Salt Lake County

Breach Type – Unknown, Data Breach

2 KUTV

  • Nearly 112,000 patients' private data was accessed following cyberattack
  • Dates of birth, address information, Social Security numbers leaked
  • Officials believed that patient information hadn't been misused, notified affected patients
Read More

 
University of Utah Health, Salt Lake County

Breach Type – Phishing, Data Breach

HIPAA Guidelines 101

  • 2,700 patients had their private identifiable information leaked in cyberattack
  • University had two previous phishing incidents that affected 3,670 patients and 5,000 patients
  • Bad actor accessed employee email account during a one month period
Read More

 
University of Utah Health, Salt Lake County

Breach Type – Phishing, Data Breach

Deseret News

  • The University fell victim to a phishing scheme as an employee email was compromised
  • It is unknown what has been done with the exposed information such as birthdays and clinical information
  • A similar incident occurred earlier with a compromise similar to this leading the university to adopt new security practices
Read More

 
University of Utah Health, Salt lake County

Breach Type – Phishing, Data Breach

The Salt Lake Tribune

  • In a two month long cyberattack hackers were able to gain access to sensitive patient information
  • Employees fell prey to phishing scams that looked like authentic emails allowing hackers to gain access to accounts
  • Almost 2,000 known patients were affected leading investigations into further documentation of these occurrences
Read More

 
University of Utah Health, Salt Lake County

Breach Type – Phishing, Data Breach

Data Breaches

  • University was victim of data breach for over a month
  • Bad actors utilized phishing in elaborate cyberattack
  • Officials investigated the attack, utilized third party
Read More

 
Premier Family Medical Networks, State of Utah

Breach Type – Unknown, Ransomware

TechTalk

  • Utah family medical clinics hit in attack that affected eleven clinics throughout the state
  • Investigation discovered bad actors used ransomware against networks
  • 320,000 patients throughout the state were likely affected, officials refused to confirm if they paid the ransom
Read More

 
Utah Association for Intellectual Disabilities

Breach Type - Hack

KSL

  • Complex cyber hack puts Christmas in jeopardy for hundreds of people in need
  • Hackers steal more than $5,000 online and lock multiple accounts
  • The Utah association believes online theft start slowly and progressed uncontrollably
Read More

 
BACK TO TOP

Education

University of Utah's College of Social and Behavioral Sciences, Salt Lake County

Breach Type – Unknown, Ransomware

Bleeping Computer

  • Bad actors used ransomware during complex cyberattack
  • Computer servers for entire college department were encrypted and locked
  • University insurance policy paid a ransom of $457,059.24
Read More

 
BACK TO TOP