Ascension, one of the largest private healthcare systems in the United States, experienced a data breach that exposed the personal and healthcare information of over 430,000 patients. The incident, disclosed in April, involved a data theft attack impacting a former business partner in December. Attackers accessed personal health information related to inpatient visits, including physician names, admission and discharge dates, diagnosis and billing codes, medical record numbers, and insurance company names. Personal information such as names, addresses, phone numbers, email addresses, dates of birth, race, gender, and Social Security numbers were also compromised. The breach was linked to a vulnerability in third-party software used by the former business partner, likely part of widespread Clop ransomware attacks.
TPRM report: https://scoringcyber.rankiteo.com/company/ascensionorg
"id": "asc220051225",
"linkid": "ascensionorg",
"type": "Breach",
"date": "5/2025",
"severity": "100",
"impact": "5",
"explanation": "Attack threatening the organization's existence"{'affected_entities': [{'customers_affected': 430000,
'industry': 'Healthcare',
'location': 'United States',
'name': 'Ascension',
'type': 'Healthcare System'}],
'attack_vector': 'Vulnerability in third-party software',
'data_breach': {'number_of_records_exposed': 430000,
'personally_identifiable_information': ['Names',
'Addresses',
'Phone numbers',
'Email addresses',
'Dates of birth',
'Race',
'Gender',
'Social Security '
'numbers'],
'sensitivity_of_data': 'High',
'type_of_data_compromised': ['Personal health information',
'Personal information']},
'date_detected': 'December',
'date_publicly_disclosed': 'April',
'description': 'Ascension, one of the largest private healthcare systems in '
'the United States, experienced a data breach that exposed the '
'personal and healthcare information of over 430,000 patients. '
'The incident, disclosed in April, involved a data theft '
'attack impacting a former business partner in December. '
'Attackers accessed personal health information related to '
'inpatient visits, including physician names, admission and '
'discharge dates, diagnosis and billing codes, medical record '
'numbers, and insurance company names. Personal information '
'such as names, addresses, phone numbers, email addresses, '
'dates of birth, race, gender, and Social Security numbers '
'were also compromised. The breach was linked to a '
'vulnerability in third-party software used by the former '
'business partner, likely part of widespread Clop ransomware '
'attacks.',
'impact': {'data_compromised': ['Personal health information',
'Physician names',
'Admission and discharge dates',
'Diagnosis and billing codes',
'Medical record numbers',
'Insurance company names',
'Names',
'Addresses',
'Phone numbers',
'Email addresses',
'Dates of birth',
'Race',
'Gender',
'Social Security numbers']},
'motivation': 'Data theft',
'ransomware': {'ransomware_strain': 'Clop'},
'threat_actor': 'Clop ransomware group',
'title': 'Ascension Healthcare Data Breach',
'type': 'Data Breach',
'vulnerability_exploited': 'Third-party software vulnerability'}