The Southeastern Council on Alcoholism and Drug Dependence hit with a ransomware attack

• The compromised information includes patients’ names, addresses, Social Security numbers, as well as medical history and treatment information.
• The organization is providing free credit monitoring and identity protection services to all potentially affected individuals.

On February 18, 2019, The Southeastern Council Alcoholism and Drug Dependence (SCADD) discovered certain disruptions in its network. Upon which, it conducted an internal review and found out that its systems were infected with ransomware.

What is the impact?

The ransomware attack has compromised certain personal information of patients. SCADD has notified 25, 148 patients about the incident.

What information was compromised?

The ransomware infected systems contained patients information such as names, addresses, Social Security numbers, as well as medical history and treatment information.

What was the immediate action taken?

• Upon learning the incident, SCADD immediately conducted a comprehensive investigation to determine the nature and impact of the incident.
• SCADD also worked closely with third-party forensic experts to determine what information was potentially compromised.
• The organization is providing free credit monitoring and identity protection services to all potentially affected individuals.
• SCADD has further requested individuals to remain vigilant and review account statements and credit reports for any suspicious activity.

“The confidentiality, privacy, and security of information is one of SCADD’s highest priorities and the organization takes this matter seriously. To date, SCADD has not received any reports that personal information has been misused as a result of this incident,” the security notice read.