Cyber Incident Victim: Cone Health

On October 21, 2020, Alamance Skin Center, a medical practice affiliated with Greensboro-based Cone Health, experienced a ransomware attack. The attackers compromised the system through either a phishing scam or brute force attack, though the specific initial vector remained unspecified in public disclosures. The incident disrupted operations at the Burlington-based dermatology practice, though the exact duration and scope of operational impact were not detailed in available reports. Cone Health publicly confirmed the attack within the same week it occurred, characterizing it as a targeted cyber intrusion. No further technical specifics regarding the ransomware variant, encryption methods, or attacker infrastructure were disclosed by the health system or its representatives.

Cone Health’s announcement did not specify whether patient data was accessed or exfiltrated during the breach, nor did it confirm if the attackers issued ransom demands. The health system did not publicly describe containment measures, recovery timelines, or whether law enforcement was engaged. The incident remained confined to Alamance Skin Center’s systems, with no indication of lateral movement to broader Cone Health networks. Public reporting did not address whether the practice restored operations via backups, paid a ransom, or implemented additional security measures post-incident. The attack highlighted vulnerabilities in regional healthcare infrastructure but yielded limited public documentation of its technical or financial consequences.