Ransomware Found on Allergy Clinic’s Server

A Colorado allergy clinic found traces of ransomware on its systems, the Post Independent reported earlier this month.

Allergy, Asthama, and Immunology of the Rockies, P.C., (AAIR) staff discovered the ransomware when they had difficulty accessing certain files. AAIR shut down its server and contacted a forensic IT company, which discovered a draft of a ransom letter on the server. The ransomware appeared to still be in a testing stage, AAIR told the Post Independent, and there is no evidence that any protected health information was copied or transmitted.

However, as the Office for Civil Rights (OCR) made clear in its recent ransomware guidance, ransomware is still a reportable security incident, and AAIR said it notified all affected individuals. AAIR is offering affected individuals one year of identity monitoring services.