Fieldtex Products, a US company that offers contract sewing and medical supply fulfillment services, announced a data breach after being targeted by a well-known ransomware group.
In a security notice published on its website on November 20, Fieldtex indicated that it first detected unauthorized access to its internal systems in mid-August. A subsequent investigation determined that hackers might have gained access to a limited quantity of protected health information.
Fieldtex specializes in commercial sewing and the creation of soft-sided carrying cases for the medical and military sectors. Additionally, the company distributes first aid and medical supplies through one of its dedicated divisions.
GET 50% Discount for VPN/ANTIVIRUS SOFTWARE AT 911Cyber - CODE: bit5025
The compromised information was provided to Fieldtex by members of health plans who had received its healthcare-related products. This data included names, addresses, dates of birth, insurance member ID numbers, plan names, effective terms, and gender. The data breach tracker maintained by the US Department of Health and Human Services recently confirmed that the Fieldtex incident affected 238,615 individuals.
The Akira ransomware group claimed responsibility for the cyberattack against Fieldtex on November 5. The cybercriminals specifically listed Fieldtex’s E-First Aid Supplies division on their leak website, asserting they had stolen over 14 gigabytes of corporate documents, including files containing information about employees, customers, and financial data. While Akira stated that the stolen data would be made public shortly, no files appeared to have been published on their leak site at the time of writing.