Cyber Incident Victim: University Medical Center

In mid-June 2021, University Medical Center (UMC), a nonprofit public hospital in Las Vegas, Nevada, experienced a cybersecurity breach involving unauthorized access to a data server. The hospital confirmed the incident after a hacking group publicly posted images of stolen personal information online. According to UMC’s statement, cybercriminals breached a server used for data storage, but there was no evidence of compromise to clinical systems or patient care infrastructure. Law enforcement agencies were notified and initiated an investigation into the breach. The hospital began notifying affected patients and employees that their personal information might have been exposed, though the full scope of the breach was not immediately disclosed. UMC committed to offering identity protection and credit monitoring services to those potentially impacted. The breach was first publicly acknowledged in a June 29, 2021, statement following media reports about the hackers’ actions.

The hacking group responsible posted images of sensitive documents, including driver’s licenses, passports, and Social Security cards belonging to approximately half a dozen individuals on its website on June 28, 2021. Cybersecurity threat analyst Brett Callow linked the group to previous high-profile ransomware incidents, noting that 32 healthcare providers had been targeted by ransomware attacks in 2021 alone. UMC emphasized that its response included securing systems, assessing the extent of the breach, and cooperating with law enforcement. The hospital did not confirm whether ransomware was deployed or whether data was exfiltrated beyond the samples displayed by the attackers. No disruptions to medical services or compromises to clinical operations were reported. The incident highlighted risks to non-clinical data systems within healthcare organizations, particularly those storing personally identifiable information.