The personal information of some of the past and current members of CareOregon Advantage was accidentally disclosed in an email sent to a contracted consultant.
The information included member name, ID number (Medicare and in some cases Medicaid), and date of birth of 0,467 past and current members.
CareOregon notified the impacted individuals of the data breach and alerted them.
TPRM report: https://scoringcyber.rankiteo.com/company/careoregon
"id": "car18183522",
"linkid": "careoregon",
"type": "Breach",
"date": "03/2022",
"severity": "80",
"impact": "3",
"explanation": "Attack with significant impact with internal employee data leaks"{'affected_entities': [{'customers_affected': 467,
'industry': 'Healthcare',
'name': 'CareOregon Advantage',
'type': 'Healthcare Organization'}],
'attack_vector': 'Email',
'data_breach': {'number_of_records_exposed': 467,
'personally_identifiable_information': True,
'sensitivity_of_data': 'High',
'type_of_data_compromised': ['Member Name',
'ID Number (Medicare and '
'Medicaid)',
'Date of Birth']},
'description': 'The personal information of some of the past and current '
'members of CareOregon Advantage was accidentally disclosed in '
'an email sent to a contracted consultant. The information '
'included member name, ID number (Medicare and in some cases '
'Medicaid), and date of birth of 467 past and current members.',
'impact': {'data_compromised': ['Member Name',
'ID Number (Medicare and Medicaid)',
'Date of Birth']},
'motivation': 'Accidental',
'post_incident_analysis': {'root_causes': 'Human Error'},
'response': {'communication_strategy': 'CareOregon notified the impacted '
'individuals of the data breach and '
'alerted them.'},
'title': 'CareOregon Data Breach',
'type': 'Data Breach',
'vulnerability_exploited': 'Human Error'}