An investigation revealed that a group of skilled hackers, known for their focus on healthcare systems, was behind the breaches. They had been using a combination of social engineering tactics, phishing attacks, and zero-day exploits to bypass the system's security measures.