Alive Hospice

Patients whose personal and protected health information were in employee emails were accessed by an unknown person or persons after two employees fell prey to phishing attacks.

Compromised information includes name, date of birth, Social Security number, passport number, driver’s license or state identification number, copy of birth or marriage certificate, financial account number, medical history information, treatment and prescription information, health insurance information, username/email and password information, biometric identifiers, IRS pin number, digital signatures, and security questions and answers.

There is no evidence that any information potentially impacted by this incident was subject to actual or attempted misuse.

Source: https://www.databreaches.net/tennessee-hospice-notifying-patients-whose-information-was-accessed-after-employees-fell-for-phishing-attacks/

"id": "ALI2341101122",
"linkid": "alive-hospice",
"type": "Data Leak",
"date": "07/2018",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"