You never know where news of a cyber attack at your organization might surface to the outside world.
In the case of medical diagnostics company LabCorp, it came through an SEC filing of an "Unscheduled Event."
That event was listed like this:
"During the weekend of July 14, 2018, LabCorp detected suspicious activity on its information technology network. LabCorp immediately took certain systems offline as part of its comprehensive response to contain the activity. This temporarily affected test processing and customer access to test results on or over the weekend. Work has been ongoing to restore full system functionality as quickly as possible."
There was no news release or update of any kind on what was happening, in sharp contrast to the minute-by-minute account of the Timehop breach.
However, SecurityWeek was able to get a response from the company: "The activity was subsequently determined to be a new variant of ransomware.”
LabCorp revenues were greater than $10 billion last year. Here is the company's SEC filing that notified the world about its data breach.