Central New York Cardiology notified 824 patients about the data breach.
The post office sent them a package of patient records that had been found loose in a mail receptacle.
The records in question contained the patients’ appointment information, name, type of visit, and in some cases, health insurance information.
TPRM report: https://scoringcyber.rankiteo.com/company/central-new-york-cardilogy
"id": "cen01101122",
"linkid": "central-new-york-cardilogy",
"type": "Data Leak",
"date": "07/2018",
"severity": "50",
"impact": "2",
"explanation": "Attack limited on finance or reputation"{'affected_entities': [{'customers_affected': 824,
'industry': 'Healthcare',
'location': 'Central New York',
'name': 'Central New York Cardiology',
'type': 'Healthcare Provider'}],
'attack_vector': 'Physical Theft or Loss',
'data_breach': {'number_of_records_exposed': 824,
'personally_identifiable_information': ['names'],
'sensitivity_of_data': 'Medium',
'type_of_data_compromised': ['appointment information',
'names',
'types of visits',
'health insurance information']},
'description': 'Central New York Cardiology notified 824 patients about a '
'data breach involving patient records found loose in a mail '
'receptacle. The records contained appointment information, '
'names, types of visits, and in some cases, health insurance '
'information.',
'impact': {'data_compromised': ['appointment information',
'names',
'types of visits',
'health insurance information']},
'response': {'communication_strategy': 'Notified affected patients'},
'title': 'Data Breach at Central New York Cardiology',
'type': 'Data Breach',
'vulnerability_exploited': 'Improper Handling of Physical Records'}