cyber Breach

Centerstone

Dec 1, 2022 1 min read
Centerstone

Centerstone, a national provider of mental health, addiction recovery, residential care, therapeutic foster care, counseling, and crisis services, suffered a data security incident after unauthorized individuals got access to 3 employee email accounts between November 4, 2021, and February 14, 2022.

The compromised information included name, address, Social Security number, date of birth, client ID, medical diagnosis/treatment information, and health insurance information.

Centerstone worked to implement additional safeguards to help ensure the security of its email environment and to reduce the risk of a similar incident occurring in the future.

Source: https://www.hipaajournal.com/zenith-american-solutions-reports-mailing-error-that-exposed-ssns-of-37000-individuals/

TPRM report: https://scoringcyber.rankiteo.com/company/centerstone

"id": "cen1854111122",
"linkid": "centerstone",
"type": "Breach",
"date": "02/2022",
"severity": "75",
"impact": "3",
"explanation": "Attack with significant impact with internal employee data leaks"
{'affected_entities': [{'industry': 'Mental Health and Addiction Recovery',
                        'name': 'Centerstone',
                        'type': 'Healthcare Provider'}],
 'attack_vector': 'Email Account Compromise',
 'data_breach': {'personally_identifiable_information': True,
                 'sensitivity_of_data': 'High',
                 'type_of_data_compromised': ['Personal Information',
                                              'Health Information']},
 'date_detected': 'November 4, 2021',
 'date_resolved': 'February 14, 2022',
 'description': 'Centerstone, a national provider of mental health, addiction '
                'recovery, residential care, therapeutic foster care, '
                'counseling, and crisis services, suffered a data security '
                'incident after unauthorized individuals got access to 3 '
                'employee email accounts between November 4, 2021, and '
                'February 14, 2022.',
 'impact': {'data_compromised': ['Name',
                                 'Address',
                                 'Social Security Number',
                                 'Date of Birth',
                                 'Client ID',
                                 'Medical Diagnosis/Treatment Information',
                                 'Health Insurance Information'],
            'systems_affected': ['Email Accounts']},
 'initial_access_broker': {'entry_point': 'Email Accounts'},
 'post_incident_analysis': {'corrective_actions': ['Implemented additional '
                                                   'safeguards to ensure the '
                                                   'security of its email '
                                                   'environment']},
 'response': {'remediation_measures': ['Implemented additional safeguards to '
                                       'ensure the security of its email '
                                       'environment']},
 'threat_actor': 'Unauthorized Individuals',
 'title': 'Centerstone Data Security Incident',
 'type': 'Data Breach'}
Published by
Roshni Ray
Roshni Ray
You might also like
Great! Next, complete checkout for full access to Rankiteo Blog.
Welcome back! You've successfully signed in.
You've successfully subscribed to Rankiteo Blog.
Success! Your account is fully activated, you now have access to all content.
Success! Your billing info has been updated.
Your billing was not updated.