In March, the Emigres’ hospital in suburban Chicago received a massive intrusion.
The incident occurred at around 4:30 a.m. after an infected person used the Internet to send a file to the hospital.
A second computer connected to the Emiganis’ network was infected by the virus and a third computer was compromised.
The network of infected computers included the hospital’s network and an email server.
The Emigre hospital had a secure network that protected all their sensitive data and was secured with firewalls, according to the investigation.
The FBI was able to gain access to the email account that was used to send the file.
The files included a patient-safety log, a medical file, an employee log and a patient’s medical records, according the criminal complaint.
Emigran Health Services Inc., a medical billing and financial services provider for Emigans, sent an email to the network administrators in the Emagines’ network.
The email contained an attachment that contained a “medical file,” according to an affidavit.
The attachment was labeled “medical and financial information.”
It included a spreadsheet with patient names, contact information and addresses, along with information about the patient’s health status.
The sender’s name, address, phone number, email and billing information were also included in the file, the affidavit said.
Emaginans’ IT administrators did not immediately respond to a request for comment from The Hill.
But in the email, the emigres wrote that they were “very sorry” for the “hurt” the “attack caused.”
Emigris CEO Steve Wustein was arrested in May on a federal drug trafficking and money laundering charge.
In the email obtained by The Hill, Wusteanin wrote, “We are deeply sorry for the pain we have caused to our patients and staff.
We are working closely with our vendors to resolve this issue as soon as possible.”
He added that the hospital had “zero tolerance” for any breach of patient privacy.
Emagres also received a threat of a mass shooting on the network in the fall of 2017.
The threat was later dismissed.
A representative for Emagre Health Services said the network was not breached in 2017 and there were no incidents at the Emigares.
Emigan’s CEO, Wertein, was arrested by federal agents in November 2018.
In January 2019, Emigries’ IT administrator told FBI agents that he and other Emigrene employees had been using their network to store and transmit data from a server in the Chicago area, according a criminal complaint unsealed in January.
Wertei also said that Emigreen had been hacked in 2016.
Emigo’s IT administrator, Daniel Moseley, was interviewed by the FBI in June 2019, according an affidavit unsealed by federal prosecutors.
Mosely was fired after an investigation.
Prosecutors said he was not at fault for the breach, but that he had been part of a conspiracy to commit the crime.
Mousley, who is now serving a 15-year sentence for fraud and conspiracy to defraud, pleaded guilty to conspiring to violate the health care laws by concealing evidence and falsifying records.
Moteley admitted to using the hospital network to access the servers of several entities, including Emigren and the hospital in Chicago.
In addition to Moseles involvement, other Emigan employees were involved in the scheme, according.
Wustea was charged with four counts of conspiracy to violate health care law in February 2019.
The indictment against him said that he used his position as an IT administrator to send an email that referenced “an Emigree server.”
The email referred to Emigrees health care network, the document said.
He was arrested a day later.
The emigre’s IT administrators told FBI investigators that Moseleys involvement was part of the conspiracy, according in the complaint.
The investigation was closed in October 2020.
Motes indictment also says that Wustes involvement in the conspiracy was “a secondary element.”
A second Emigrey employee was also charged with conspiring to break the health insurance laws by attempting to use Emigere to facilitate the transfer of a patient to Emagree.
The other Emigaes employee, Scott Johnson, pleaded not guilty to one count of conspiracy and one count each of wire fraud and making false statements.
Prosecutors in Washington state said that Johnson and Wustei also were connected to a criminal enterprise that used the Emigeres network to sell prescription drugs and other products to hospitals and other healthcare providers.
The criminal complaint filed in the U.S. District Court for the Southern District of Washington alleges that the Emagores were a front for a drug-trafficking ring that operated in the Washington area.
It also alleges that Emagrees employees had ties to a drug trafficking operation and that a drug ring was controlled by the Emegre organization.
The complaint alleges that Johnson was connected to at least three drug trafficking rings