More than 2 months ago, the IT provider for dozens of health insurance companies and company health insurance companies, Bitmarck, was hit by a cyber attack. Entire data centers even had to be shut down. The repairs are still ongoing.
The attack on the IT service provider Bitmarck was so violent that in the first few weeks there was hardly any company health insurance fund that could be contacted normally. Usually only hastily installed emergency numbers worked. E-mail communication and access to patient files was not possible at all. However, the repairs seem to be progressing quickly. At least many cash registers can now be reached normally again. However, the website of the health insurers still reports restrictions, especially when accessing the ePA - electronic patient file.
Who was the attacker?
It is also not known what exactly happened and who the attacker was. The relevant leak pages of the well-known ransomware groups also offer no indication of which group carried out the attack and whether even blackmail against Bitmarck was started. The company continues to state that no data was lost or extracted to the attackers. The data of the ePA - electronic patient files are also very secure, as they are subject to the gematik regulations and should have special protection.
According to Bitmarck, the LKA is still involved in processing the incident. But it is still surprising that no APT group claimed responsibility for the attack. Normally, the groups want to show that they have special attack skills. But maybe it wasn't one of those groups, but a state-sponsored actor from abroad. A particularly large number of government agencies and responsible IT centers are currently being attacked.
Editor/sel
More at Bitmarck.de