Artivion, a prominent manufacturer of heart surgery devices, announced a ransomware attack on November 21, which disrupted some of its operations and led to the deactivation of certain systems.

Company Overview

Based in Atlanta, Georgia, Artivion employs over 1,250 individuals globally, with sales operations spanning more than 100 countries. It maintains manufacturing facilities in Atlanta; Austin, Texas; and Hechingen, Germany.

Incident Details

In an 8-K filing with the U.S. Securities and Exchange Commission (SEC), Artivion described an incident involving system encryption and data theft. Although the term "ransomware" wasn't explicitly used, the circumstances align with typical ransomware attacks.

Response Measures

Artivion swiftly took affected systems offline, launched an investigation, and brought in external advisors specializing in legal, cybersecurity, and forensics to manage the situation. The company is in the process of securely restoring its systems and assessing any potential obligations for notifying affected parties. While disruptions to operations, order processing, and shipping have largely been resolved, Artivion anticipates incurring additional expenses beyond those covered by insurance.

Industry Context

No group has yet claimed responsibility for the attack on Artivion. However, such admissions often surface if ransom demands remain unmet. This incident is part of a broader wave of ransomware attacks targeting the U.S. healthcare sector. Recently, the BianLian cybercrime group claimed responsibility for an attack on Boston Children's Health Physicians, threatening to release data unless paid a ransom. Earlier this month, Anna Jaques Hospital revealed a ransomware attack last Christmas exposed sensitive information of over 310,000 patients. Artivion is focused on repairing affected systems and mitigating any further impact on its operations, signaling ongoing challenges within the healthcare industry's cybersecurity landscape.

The link has been copied!