Enzo Biochem notifies 2.5 million individuals of data breach
Enzo Biochem, a New York-based life sciences and molecular diagnostics company, has confirmed a data breach that resulted in the compromise of nearly 2.5 million individuals’ protected health information (PHI) and Social Security numbers. The attack was a ransomware attack that breached the company’s computer systems, and it occurred on April 6th. The company filed documents with the Securities and Exchange Commission (SEC) on May 30th, alerting the public that 2.47 million individuals across the United States were affected by the breach.
Details of the data breach
The breach reportedly leaked names, testing information, and other personal identifiable information (PII) of 2.47 million individuals. Of these individuals, 600,000 had their Social Security numbers leaked. The breach is believed to have occurred in early April, and Enzo Biochem confirmed that a ransomware attack had breached its external systems on April 6th. On April 11th, the company determined what kind of data had been leaked and is now disclosing the incident publicly.
Enzo Biochem’s response to the breach
Despite the breach, Enzo Biochem continues to operate and has reopened its facilities. However, the company is implementing new measures to its disaster recovery plan and has launched an investigation with the help of cybersecurity experts in response to the attack.
Expert insights into the attack
One cybersecurity expert, Roy Akerman, co-founder and CEO of Rezonate, noted in an emailed statement that “Identity PII and PHI data continues to be a high-demand target for malicious attackers.” He also pointed out that disconnecting machines from outside access for the most part will not help against an already encrypted system or prevent automatic propagation of malware. Akerman said that the attackers potentially intended to compromise data and leverage it for additional follow-up attacks or sell it in the Dark Web. As more information becomes available, the root cause, intent, and complete impact of the attack will become clear.
Final thoughts
This data breach at Enzo Biochem highlights the need for companies to take cybersecurity very seriously. As hackers become more and more sophisticated in their attacks, companies must be proactive in securing their computer systems and protecting their customers’ data. Enzo Biochem’s swift response to the breach is commendable, but it serves as a reminder that no company is invulnerable to cyberattacks. It is important that companies stay vigilant and have a disaster recovery plan in place in the event of a cyberattack.
<< photo by Sigmund >>
You might want to read !
- The Security of Space: Hackers Target SpaceX’s latest Satellite in DEF CON
- Exploring the MOVEit Zero-Day Exploit: Understanding the Attack, Its Implications, and Protective Measures
- “Why Cybersecurity Vulnerabilities Require Urgent Attention: A Call to Action for Zyxel Customers to Patch Firewalls Now”
- “The Growing Threat of Ransomware Attacks: Enzo Biochem Latest Victim with 2.5M Individuals’ Information Exposed”
- The Risks and Implications of Web Skimmer Attack Targeting Magento, WooCommerce, WordPress, and Shopify Websites
- The Vulnerability of Connected Cars: Toyota’s Latest Data Breach
- API Security: The Risk of Data Leakage
- “Uncovering the Unseen: Toyota’s Decade-Long Data Leak Affects Over 2 Million Customers”
- Sysco’s Security Breach Shocks with Customer and Employee Data Leaked
- Exploring the Dark Side of Cyber Attacks: The MOVEit Exploit and Ransomware Group Targeting Organizations