Onix Group says March ransomware attack impacted more than 300,000 individuals

Pennsylvania-based real estate company Onix Group said that a cyber attack it suffered earlier this year compromised the personal and healthcare information of more than 300,000 individuals.

Onix Group is a Pennsylvania-based real estate company providing consulting services to other businesses. It owns and operates eight hotel chains, including Hilton, Marriott, Hyatt, and others. Onix also provides healthcare services including operating an addiction-treatment facility, a sub-acute care facility, mobile x-ray units, and medical office spaces.

The company said in a press release that on 27th March, it experienced a ransomware attack that involved threat actors gaining unauthorised access to its internal network and encrypting certain systems. Onix immediately launched an investigation with assistance from third-party cyber security experts to understand the scope of the security incident.

“The investigation determined that an unauthorised person accessed the network between March 20, 2023, and March 27, 2023, corrupted certain systems, and removed a subset of files,” the press release read.

The compromised information included customers’ names, social security numbers, dates of birth, scheduling, billing, clinical information regarding their care, direct deposit information, and health plan enrolment information at one of its affiliated healthcare providers.

Onix notified all affected individuals about the data breach, including those who received care at its affiliate institutions like Addiction Recovery Systems, Cadia Healthcare, Physician’s Mobile X-Ray, and Onix Hospitality Group.

In a filing with the U.S. Department of Health and Human Services Office for Civil Rights Breach Portal, Onix said that at least 319,500 individuals were affected by the ransomware attack.

“Onix takes the privacy and security of the information in its care very seriously and sincerely regrets any inconvenience this incident may cause. To help prevent something like this from happening again, Onix strengthened the security of its systems and will continue enhancing its protocols to safeguard the information in its care,” Onix said in a statement.

The company is providing all affected individuals complimentary credit monitoring and identity theft protection services and has set up a dedicated hotline to assist all affected individuals and answer questions about this incident.