Overview
- CareCloud, which detected an intrusion on March 16, restored the affected electronic health records system after about eight hours.
- In a March 27 SEC filing, the company said the incident was confined to its CareCloud Health division and did not touch other systems.
- CareCloud hired a cyber response team from a Big Four firm to run a forensic review and determine whether any data was accessed or exfiltrated.
- The company said the attacker no longer has access, and it currently does not expect a material financial impact with potential losses covered by cyber insurance.
- No ransomware group has claimed responsibility to date, and health record platforms remain prime targets for data-theft extortion, as seen in the 2024 Change Healthcare attack.