Prothena

Prothena is an organization that operates under the alias Prothena. Its headquarters is located in the United States of America. The organization is known to have experienced a significant cybersecurity incident in December 2021. This incident involved a ransomware attack that targeted a medical center associated with the organization. The attack highlights the organization's exposure to threats affecting healthcare-related data.

On December 20, 2021, threat actors gained initial access to the organization's network four days before deploying the ransomware. During this period, the attackers exfiltrated a range of sensitive information from the compromised systems. The stolen data included patients' names, Social Security numbers, health insurance details, and comprehensive medical records. The volume of affected individuals was reported to be approximately 700,000 patients. The exfiltration occurred prior to the ransomware deployment, indicating a multi-stage intrusion.

Following the ransomware deployment, the organization initiated electronic health record downtime procedures, which caused service delays and appointment cancellations. Despite the disruptions, patient care continued through the use of backup systems, and the medical facilities remained operational. Restoration of the affected systems was achieved after collaboration with law enforcement agencies and external cybersecurity experts. Notably, the electronic medical records application itself was not compromised during the incident. In response to the breach, the organization implemented enhanced security measures to strengthen its defenses against future attacks.