Centerstone, a nonprofit health organization suffered a data security incident that exposed the personal and protected health information belonging to certain current and former Centerstone clients.
The compromised information included name, address, Social Security number, date of birth, client ID, medical diagnosis/treatment information, and/or health insurance information.
Centerstone is working to implement additional safeguards to help ensure the security of its email environment and to reduce the risk of a similar incident occurring in the future.
Along with notifying the affected individuals it also established a toll-free call centre to answer questions about the incident.
TPRM report: https://scoringcyber.rankiteo.com/company/centerstone
"id": "cen224971122",
"linkid": "centerstone",
"type": "Breach",
"date": "08/2022",
"severity": "80",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"{'affected_entities': [{'industry': 'Healthcare',
'name': 'Centerstone',
'type': 'Nonprofit Health Organization'}],
'attack_vector': 'Email Environment',
'data_breach': {'personally_identifiable_information': True,
'sensitivity_of_data': 'High',
'type_of_data_compromised': ['PII', 'PHI']},
'description': 'Centerstone, a nonprofit health organization suffered a data '
'security incident that exposed the personal and protected '
'health information belonging to certain current and former '
'Centerstone clients.',
'impact': {'data_compromised': ['name',
'address',
'Social Security number',
'date of birth',
'client ID',
'medical diagnosis/treatment information',
'health insurance information']},
'response': {'communication_strategy': ['Notified affected individuals',
'Established toll-free call center'],
'remediation_measures': ['Implement additional safeguards to '
'secure email environment',
'Reduce risk of similar incidents']},
'title': 'Centerstone Data Security Incident',
'type': 'Data Breach'}