cyber Breach

Blue Earth County

Jul 14, 2022 1 min read
Blue Earth County

An employee of the Blue Earth County Human Services Department accessed the personal and private information of 222 individuals without authorization.

The department started investigating the incident and placed the employee on administrative leave till the outcome of the investigation.

The database that was accessed contained the individuals’ names, addresses, medical histories, and Social Security numbers of its residents.

However, after the investigation concluded, the employee resigned from their position.

Source: https://www.hipaajournal.com/deaconess-health-system-and-blue-earth-county-notify-patients-about-insider-data-breaches/

TPRM report: https://scoringcyber.rankiteo.com/company/blue-earth-county

"id": "blu1321622",
"linkid": "blue-earth-county",
"type": "Breach",
"date": "06/2020",
"severity": "80",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"
{'affected_entities': [{'customers_affected': 222,
                        'industry': 'Human Services',
                        'location': 'Blue Earth County',
                        'name': 'Blue Earth County Human Services Department',
                        'type': 'Government Agency'}],
 'attack_vector': 'Unauthorized Access',
 'data_breach': {'number_of_records_exposed': 222,
                 'personally_identifiable_information': ['names',
                                                         'addresses',
                                                         'Social Security '
                                                         'numbers'],
                 'sensitivity_of_data': 'High',
                 'type_of_data_compromised': ['names',
                                              'addresses',
                                              'medical histories',
                                              'Social Security numbers']},
 'description': 'An employee of the Blue Earth County Human Services '
                'Department accessed the personal and private information of '
                '222 individuals without authorization. The department started '
                'investigating the incident and placed the employee on '
                'administrative leave till the outcome of the investigation. '
                'The database that was accessed contained the individuals’ '
                'names, addresses, medical histories, and Social Security '
                'numbers of its residents. However, after the investigation '
                'concluded, the employee resigned from their position.',
 'impact': {'data_compromised': ['names',
                                 'addresses',
                                 'medical histories',
                                 'Social Security numbers']},
 'investigation_status': 'Resolved',
 'threat_actor': 'Employee',
 'title': 'Unauthorized Access to Personal and Private Information',
 'type': 'Data Breach',
 'vulnerability_exploited': 'Insider Threat'}
Published by
Harshit Kaur Bhatia
Harshit Kaur Bhatia
You might also like
Great! Next, complete checkout for full access to Rankiteo Blog.
Welcome back! You've successfully signed in.
You've successfully subscribed to Rankiteo Blog.
Success! Your account is fully activated, you now have access to all content.
Success! Your billing info has been updated.
Your billing was not updated.