While the DOJ didn’t dive into the specifics of the case, it was reported back in 2018 that GMC was investigating a possible data breach that led to the leak of patient information online. The attackers also threatened GMC’s staff and shamed the provider on the internet. Now-deleted blog posts on Securolytics’ website written by Singla describe attacking targets in healthcare, presumably to fix problems with their security. How that activity is linked to the data breach reported in 2018, or the charges filed this week, is still unclear.
The executive was indicted by a federal grand jury on June 8th and was charged with 17 counts of intentional damage to a protected computer, with each charge carrying a maximum sentence of 10 years in prison. He was also charged with one count of obtaining information by computer from a protected computer, which has a max sentence of five years in prison.
Special Agent in Charge Chris Hacker of the FBI’s Atlanta Field Office said:
“This cyberattack on a hospital not only could have had disastrous consequences, but patients’ personal information was also compromised. The FBI and our law enforcement partners are determined to hold accountable, those who allegedly put people’s health and safety at risk while driven by greed.”
All products recommended by Engadget are selected by our editorial team, independent of our parent company. Some of our stories include affiliate links. If you buy something through one of these links, we may earn an affiliate commission.