Breach cyber

Hospice by the Bay

Mar 10, 2020 1 min read
Hospice by the Bay

The California Office of the Attorney General reported a data breach involving Hospice by the Bay on March 27, 2020. The breach occurred on March 10, 2020, due to a phishing email intended to obtain personal health information, specifically impacting names, medical record numbers, insurer names, and charges related to hospice services. The number of individuals affected is unknown.

Source: https://oag.ca.gov/ecrime/databreach/reports/sb24-188680

TPRM report: https://www.rankiteo.com/company/by-the-bay-health

"id": "by-403072625",
"linkid": "by-the-bay-health",
"type": "Breach",
"date": "3/2020",
"severity": "60",
"impact": "3",
"explanation": "Attack with significant impact with internal employee data leaks"
{'affected_entities': [{'industry': 'Healthcare',
                        'location': 'California',
                        'name': 'Hospice by the Bay',
                        'type': 'Healthcare Provider'}],
 'attack_vector': 'Phishing',
 'data_breach': {'personally_identifiable_information': True,
                 'sensitivity_of_data': 'High',
                 'type_of_data_compromised': ['names',
                                              'medical record numbers',
                                              'insurer names',
                                              'charges related to hospice '
                                              'services']},
 'date_detected': '2020-03-10',
 'date_publicly_disclosed': '2020-03-27',
 'description': 'The California Office of the Attorney General reported a data '
                'breach involving Hospice by the Bay on March 27, 2020. The '
                'breach occurred on March 10, 2020, due to a phishing email '
                'intended to obtain personal health information, specifically '
                'impacting names, medical record numbers, insurer names, and '
                'charges related to hospice services. The number of '
                'individuals affected is unknown.',
 'impact': {'data_compromised': ['names',
                                 'medical record numbers',
                                 'insurer names',
                                 'charges related to hospice services']},
 'initial_access_broker': {'entry_point': 'Phishing Email'},
 'motivation': 'Data Theft',
 'post_incident_analysis': {'root_causes': 'Phishing Email'},
 'references': [{'date_accessed': '2020-03-27',
                 'source': 'California Office of the Attorney General'}],
 'title': 'Data Breach at Hospice by the Bay',
 'type': 'Data Breach',
 'vulnerability_exploited': 'Human'}
Published by
Jeremy C
Jeremy C
You might also like
Great! Next, complete checkout for full access to Rankiteo Blog.
Welcome back! You've successfully signed in.
You've successfully subscribed to Rankiteo Blog.
Success! Your account is fully activated, you now have access to all content.
Success! Your billing info has been updated.
Your billing was not updated.