Cyber Incident Victim: Tech Etch

Tech Etch, a Plymouth, Massachusetts-based manufacturer specializing in precision-engineered metal components and electronic shielding, experienced a ransomware attack discovered on August 25, 2021. Forensic investigations determined unauthorized actors first accessed the company’s network on August 20, 2021. As a provider of an employee health plan, Tech Etch qualified as a HIPAA-covered entity, making employee protected health information (PHI) a potential target. The company engaged external cybersecurity experts to investigate the breach, secure its systems, and prevent additional unauthorized access. Tech Etch maintained functional backups that were not compromised by the attack, enabling full restoration of encrypted data without ransom payment. While the company implemented safeguards to protect employee data, the investigation revealed attackers attempted to access encrypted backups containing employee information but could not view them due to Tech Etch’s encryption measures.

The attackers did not access HR servers storing employee data, and no direct evidence confirmed data staging or exfiltration. However, certain employee information resided in Tech Etch’s email environment, creating potential exposure risks for names, addresses, Social Security numbers, dates of birth, and PHI. Tech Etch found no indication that attackers acquired or misused employee data, nor was any data publicly posted. Affected employees received notifications advising vigilance in monitoring credit reports, financial accounts, and insurance statements for fraudulent activity. The company reported the incident to the U.S. Department of Health and Human Services’ Office for Civil Rights and the Massachusetts Attorney General. Tech Etch implemented enhanced security measures following the attack and committed to ongoing protocol reviews. The total number of affected individuals remained undisclosed at the time of reporting.