cyber Ransomware

CarePartners

May 11, 2023 1 min read
CarePartners

The detailed medical histories and contact information of 10,000 of home-care patients in Ontario are being held for ransom by thieves.

They raided the computer systems of a health-care provider.

Personal health and financial information of patients had been inappropriately accessed.

Information compromised included phone numbers and addresses, dates of birth, and health card numbers, detailed medical histories including past conditions, diagnoses, surgical procedures, care plans and medications for patients across the province.

It also contained more than 140 active patient credit card numbers and expiry dates, many with security codes.

Source: https://www.cbc.ca/news/science/carepartners-data-breach-ransom-patients-medical-records-1.4749515

TPRM report: https://scoringcyber.rankiteo.com/company/carepartners

"id": "car231091122",
"linkid": "carepartners",
"type": "Ransomware",
"date": "07/2018",
"severity": "100",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"
{'affected_entities': [{'customers_affected': 10000,
                        'industry': 'Healthcare',
                        'location': 'Ontario',
                        'type': 'Health-Care Provider'}],
 'attack_vector': 'Computer System Raid',
 'data_breach': {'data_exfiltration': 'Yes',
                 'number_of_records_exposed': 10000,
                 'personally_identifiable_information': ['Phone Numbers',
                                                         'Addresses',
                                                         'Dates of Birth',
                                                         'Health Card Numbers'],
                 'sensitivity_of_data': 'High',
                 'type_of_data_compromised': ['Personal Health Information',
                                              'Financial Information']},
 'description': 'The detailed medical histories and contact information of '
                '10,000 home-care patients in Ontario are being held for '
                'ransom by thieves. They raided the computer systems of a '
                'health-care provider. Personal health and financial '
                'information of patients had been inappropriately accessed. '
                'Information compromised included phone numbers and addresses, '
                'dates of birth, and health card numbers, detailed medical '
                'histories including past conditions, diagnoses, surgical '
                'procedures, care plans and medications for patients across '
                'the province. It also contained more than 140 active patient '
                'credit card numbers and expiry dates, many with security '
                'codes.',
 'impact': {'data_compromised': ['phone numbers and addresses',
                                 'dates of birth',
                                 'health card numbers',
                                 'detailed medical histories',
                                 'credit card numbers',
                                 'expiry dates',
                                 'security codes'],
            'identity_theft_risk': 'High',
            'payment_information_risk': 'High',
            'systems_affected': 'Computer Systems of Health-Care Provider'},
 'motivation': 'Ransom',
 'ransomware': {'data_exfiltration': 'Yes'},
 'threat_actor': 'Unknown Thieves',
 'title': 'Ransomware Attack on Ontario Health-Care Provider',
 'type': 'Ransomware'}
Published by
Jeremy C
Jeremy C
You might also like
Great! Next, complete checkout for full access to Rankiteo Blog.
Welcome back! You've successfully signed in.
You've successfully subscribed to Rankiteo Blog.
Success! Your account is fully activated, you now have access to all content.
Success! Your billing info has been updated.
Your billing was not updated.