Patients whose personal and protected health information were in employee emails were accessed by an unknown person or persons after two employees fell prey to phishing attacks.
Compromised information includes name, date of birth, Social Security number, passport number, driver’s license or state identification number, copy of birth or marriage certificate, financial account number, medical history information, treatment and prescription information, health insurance information, username/email and password information, biometric identifiers, IRS pin number, digital signatures, and security questions and answers.
There is no evidence that any information potentially impacted by this incident was subject to actual or attempted misuse.
TPRM report: https://scoringcyber.rankiteo.com/company/alive-hospice
"id": "ali2341101122",
"linkid": "alive-hospice",
"type": "Data Leak",
"date": "07/2018",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"{'affected_entities': [{'industry': 'Healthcare', 'type': 'Healthcare'}],
'attack_vector': 'Phishing',
'data_breach': {'personally_identifiable_information': True,
'sensitivity_of_data': 'High',
'type_of_data_compromised': ['personal information',
'protected health information']},
'description': 'Patients whose personal and protected health information were '
'in employee emails were accessed by an unknown person or '
'persons after two employees fell prey to phishing attacks. '
'Compromised information includes name, date of birth, Social '
'Security number, passport number, driver’s license or state '
'identification number, copy of birth or marriage certificate, '
'financial account number, medical history information, '
'treatment and prescription information, health insurance '
'information, username/email and password information, '
'biometric identifiers, IRS pin number, digital signatures, '
'and security questions and answers. There is no evidence that '
'any information potentially impacted by this incident was '
'subject to actual or attempted misuse.',
'impact': {'data_compromised': ['name',
'date of birth',
'Social Security number',
'passport number',
'driver’s license or state identification '
'number',
'copy of birth or marriage certificate',
'financial account number',
'medical history information',
'treatment and prescription information',
'health insurance information',
'username/email and password information',
'biometric identifiers',
'IRS pin number',
'digital signatures',
'security questions and answers']},
'initial_access_broker': {'entry_point': 'Phishing Email'},
'post_incident_analysis': {'root_causes': 'Phishing attacks on employees'},
'threat_actor': 'Unknown',
'title': 'Phishing Attack Leading to Data Breach',
'type': 'Data Breach',
'vulnerability_exploited': 'Human Vulnerability'}