Healthcare insurance giant Bupa suffered from a data breach incident after an employee inappropriately copied and removed customer information from the business.
In all, around 108,000 international health insurance policies were compromised.
The compromised data includes names, dates of birth, nationalities, phone numbers, email addresses, membership numbers, and other administrative data.
Financial and medical information did not expose.
They took preventive steps to avoid similar incidents happening in the future.
TPRM report: https://scoringcyber.rankiteo.com/company/bupa
"id": "bup857291022",
"linkid": "bupa",
"type": "Breach",
"date": "07/2017",
"severity": "60",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"{'affected_entities': [{'customers_affected': '108,000 international health '
'insurance policies',
'industry': 'Healthcare',
'name': 'Bupa',
'type': 'Health Insurance Provider'}],
'attack_vector': 'Insider Threat',
'data_breach': {'number_of_records_exposed': '108,000',
'personally_identifiable_information': 'Yes',
'sensitivity_of_data': 'Moderate',
'type_of_data_compromised': ['Names',
'Dates of Birth',
'Nationalities',
'Phone Numbers',
'Email Addresses',
'Membership Numbers',
'Other Administrative Data']},
'description': 'Healthcare insurance giant Bupa suffered from a data breach '
'incident after an employee inappropriately copied and removed '
'customer information from the business.',
'impact': {'data_compromised': ['Names',
'Dates of Birth',
'Nationalities',
'Phone Numbers',
'Email Addresses',
'Membership Numbers',
'Other Administrative Data']},
'motivation': 'Unknown',
'response': {'remediation_measures': 'Preventive steps to avoid similar '
'incidents'},
'threat_actor': 'Employee',
'title': 'Bupa Data Breach Incident',
'type': 'Data Breach',
'vulnerability_exploited': 'Employee Malpractice'}