Cybersafetyconnections November 20, 2023 vol#144 

  • From konbriefing, there was a suspected cyberattack on the Harris Center for Mental Health and IDD – Houston, Texas, USA (Harris County, Fort Bend County, Montgomery County) 
  • The attack caused loss of access to patient’s files leading to delay in treatment because of files being encrypted as in ransomware attack. 
  • No cybercriminal group has been identified as being responsible for the attack. 
  • The Harris Center for Mental Health and IDD took steps to mitigate loss from cyberattack. 

What happened? 

DTIC-UVC 

From konbriefing, the Harris Center for Mental Health and IDD was a victim of a suspected cyberattack specifically ransomware and took the necessary precaution of shutting down their network in response to the suspected cyberattack.  

Who was impacted? 

The attack has caused limited access to patient files, resulting in delays in treatment. Apparently, the ransomware attack encrypted several working files, making them inaccessible to Harris Center employees. It was not clear at the time of this reporting if the cyberattack had compromised patient’s data. It is worth noting that this latest incident comes after a cyberattack exposed information for almost 600,000 Houston-area mental health patients earlier this year, with the Harris Center being among the targeted providers in the breach. 

Which cybercriminal Group was responsible?’ 

Ransomware as a service 

No cybercriminal group has been identified as being responsible for the attack. 

How has the provider mitigated the loss from the cyberattack? 

OWASP-Threat and Safeguard Matrix 

According to Houston Public Media ,the provider took the following steps so far: 

  • In response, the provider preemptively shut down their network to prevent the spread of the attack. 
  • They have assured the public that they are doing everything possible to continue providing patient care without interruption. 
  • The Harris Center is actively working with their teams, as well as third-party security response specialists, to investigate and restore full functionality. 
  • They have also contacted law enforcement and are working with the Harris County Office of Homeland Security & Emergency Management and the Harris County Information Technology department to manage the incident. 
  • While it remains unclear if the suspected attack has compromised patient data, the Harris Center has stated that they are unable to provide additional information at this time. 
  • They have, however, promised to keep the community informed should they learn of further impacts.  

Conclusion 

Based on the information we have it looks as if The Harris Center for Mental Health and IDD is facing a re-attack after the first attack. The Harris Center for Mental Health and IDD looks to be taking steps to mitigate loss and based on the OWASP-Threat and Safeguard Matrix above, it is hoped that the healthcare provider had: 

  • Backup of data as mentioned last week
  • Business Continuity and Disaster Recovery Test in place
  • And have made the necessary public disclosures. 

Subscribe to get the latest blog post.