Virtual Event: Threat Detection and Incident Response Summit - Watch Sessions
Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Cybercrime

Healthcare Technology Provider Omnicell Discloses Ransomware Attack

Healthcare technology company Omnicell revealed in a filing with the United States Securities and Exchange Commission (SEC) that it recently fell victim to a ransomware attack.

Healthcare technology company Omnicell revealed in a filing with the United States Securities and Exchange Commission (SEC) that it recently fell victim to a ransomware attack.

Omnicell is an American multinational company that manufactures systems for automated medication management at healthcare facilities, as well as patient engagement software for pharmacies.

In its latest Form 10-Q filing with the SEC, the company noted that some of its internal systems were impacted by a ransomware attack on May 4, 2022.

“There is an impact on certain of the Company’s products and services, as well as certain of its internal systems,” Omnicell said.

The company says it immediately took steps to contain the incident and that it also implemented plans to “restore and support continued operations.”

While it has already informed law enforcement and contacted cybersecurity experts to investigate the incident, Omnicell hasn’t yet determined the extent of the attack.

“The Company is in the early stages of its investigation and assessment of the security event and cannot determine, at this time, the extent of the impact from such an event on our business, results of operations or financial condition or whether such impact will have a material adverse effect,” Omnicell said.

Advertisement. Scroll to continue reading.

Omnicell did not provide further information on the ransomware used in the attack and didn’t say whether the attackers stole any corporate or personal information.

In its 2021 Internet Crime Report earlier this year, the FBI Internet Crime Complaint Center (IC3) noted that the public health sector was the most targeted by ransomware last year.

In 2021, IC3 received 148 complaints of ransomware attacks from healthcare firms, twice the number received from organizations in the information technology sector, which was the third most targeted sector.

As Omnicell points out, however, organizations are prone to various other types of cyberattacks and internal threats as well.

“Our IT systems and third-party cloud services are potentially vulnerable to cyber-attacks, including ransomware, or other data security incidents, by employees or others, which may expose sensitive data to unauthorized persons,” Omnicell noted.

Related: Ransomware Attack Hits Production Facilities of Agricultural Equipment Giant AGCO

Related: Ransomware, Malware-as-a-Service Dominate Threat Landscape

Related: Ransomware Attack Disrupts Manufacturing at KP Snacks

Written By

Ionut Arghire is an international correspondent for SecurityWeek.

Click to comment

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

SecurityWeek’s Threat Detection and Incident Response Summit brings together security practitioners from around the world to share war stories on breaches, APT attacks and threat intelligence.

Register

Securityweek’s CISO Forum will address issues and challenges that are top of mind for today’s security leaders and what the future looks like as chief defenders of the enterprise.

Register

Expert Insights

Related Content

Application Security

Cycode, a startup that provides solutions for protecting software source code, emerged from stealth mode on Tuesday with $4.6 million in seed funding.

Cybercrime

Luxury retailer Neiman Marcus Group informed some customers last week that their online accounts had been breached by hackers.

Cybercrime

The changing nature of what we still generally call ransomware will continue through 2023, driven by three primary conditions.

Cybercrime

A recently disclosed vBulletin vulnerability, which had a zero-day status for roughly two days last week, was exploited in a hacker attack targeting the...

Cybercrime

Satellite TV giant Dish Network confirmed that a recent outage was the result of a cyberattack and admitted that data was stolen.

Cybercrime

As it evolves, web3 will contain and increase all the security issues of web2 – and perhaps add a few more.

Cybercrime

Zendesk is informing customers about a data breach that started with an SMS phishing campaign targeting the company’s employees.

Management & Strategy

SecurityWeek examines how a layoff-induced influx of experienced professionals into the job seeker market is affecting or might affect, the skills gap and recruitment...