cyber Breach

Ambry Genetics

May 11, 2023 1 min read
Ambry Genetics

Ambry Genetics Corporation (“Ambry”) suffered a data breach incident in April 2020 after an employee’s email account was compromised.

The breach compromised the Protected Health Information (“PHI”) and Personally Identifiable Information (“PII”) of approximately 225,370 patients.

however, now after the settlement, Ambry has agreed to establish a $12,250,000 Settlement Fund to pay for credit monitoring services and identity theft insurance, cash payments to Class Members for reimbursement of certain out-of-pocket costs, an additional cash payment to Class Members who were a resident or citizen of California or Illinois sometime and the costs of the settlement administration, court-approved attorneys’ fees.

Source: https://www.ambrybreachsettlement.com/

TPRM report: https://scoringcyber.rankiteo.com/company/ambry-genetics

"id": "amb112041222",
"linkid": "ambry-genetics",
"type": "Data Leak",
"date": "04/2020",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"
{'affected_entities': [{'customers_affected': 225370,
                        'industry': 'Healthcare',
                        'name': 'Ambry Genetics Corporation',
                        'type': 'Corporation'}],
 'attack_vector': 'Compromised Email Account',
 'data_breach': {'data_exfiltration': True,
                 'number_of_records_exposed': 225370,
                 'personally_identifiable_information': True,
                 'sensitivity_of_data': 'High',
                 'type_of_data_compromised': ['PHI', 'PII']},
 'date_detected': 'April 2020',
 'description': 'Ambry Genetics Corporation suffered a data breach incident in '
                'April 2020 after an employee’s email account was compromised. '
                'The breach compromised the Protected Health Information (PHI) '
                'and Personally Identifiable Information (PII) of '
                'approximately 225,370 patients. Ambry has agreed to establish '
                'a $12,250,000 Settlement Fund to pay for credit monitoring '
                'services and identity theft insurance, cash payments to Class '
                'Members for reimbursement of certain out-of-pocket costs, an '
                'additional cash payment to Class Members who were a resident '
                'or citizen of California or Illinois sometime, and the costs '
                'of the settlement administration, court-approved attorneys’ '
                'fees.',
 'impact': {'data_compromised': ['PHI', 'PII'],
            'identity_theft_risk': True,
            'legal_liabilities': 'Settlement Fund of $12,250,000'},
 'initial_access_broker': {'entry_point': 'Email Account Compromise'},
 'post_incident_analysis': {'root_causes': 'Email Account Compromise'},
 'regulatory_compliance': {'legal_actions': 'Settlement Fund'},
 'title': 'Ambry Genetics Data Breach',
 'type': 'Data Breach',
 'vulnerability_exploited': 'Email Account Compromise'}
Published by
Harshit Kaur Bhatia
Harshit Kaur Bhatia
You might also like
Great! Next, complete checkout for full access to Rankiteo Blog.
Welcome back! You've successfully signed in.
You've successfully subscribed to Rankiteo Blog.
Success! Your account is fully activated, you now have access to all content.
Success! Your billing info has been updated.
Your billing was not updated.