Chaplaincy Health Care

Chaplaincy Health Care suffered from a data breach incident in January 2019.

An employee’s email login credentials were compromised through an apparent phishing scheme. Although it appears the schemers only were looking for more email contacts

The employee’s inbox had some patient information, including names, birth dates, partial Social Security numbers, medical record numbers, and home addresses, the agency said this week.

Chaplaincy officials said that complete social security numbers, financial records, and credit card information were not accessible.

Chaplaincy Health Care offered free identity protection and credit monitoring to more than 1,000 people after a privacy breach.

Source: https://www.databreaches.net/wa-heres-what-you-need-to-know-about-chaplaincy-health-cares-email-breach/

TPRM report: https://scoringcyber.rankiteo.com/company/chaplaincy-health-care

"id": "cha12616223",
"linkid": "chaplaincy-health-care",
"type": "Breach",
"date": "01/2019",
"severity": "50",
"impact": "2",
"explanation": "Attack limited on finance or reputation"

{'affected_entities': [{'customers_affected': 'More than 1,000 people',
                        'industry': 'Healthcare',
                        'name': 'Chaplaincy Health Care',
                        'type': 'Healthcare'}],
 'attack_vector': 'Phishing',
 'data_breach': {'number_of_records_exposed': 'More than 1,000',
                 'personally_identifiable_information': ['Names',
                                                         'Birth Dates',
                                                         'Partial Social '
                                                         'Security Numbers',
                                                         'Medical Record '
                                                         'Numbers',
                                                         'Home Addresses'],
                 'sensitivity_of_data': 'High',
                 'type_of_data_compromised': ['Personally Identifiable '
                                              'Information']},
 'date_detected': 'January 2019',
 'description': 'Chaplaincy Health Care suffered from a data breach incident '
                'in January 2019. An employee’s email login credentials were '
                'compromised through an apparent phishing scheme. The '
                'employee’s inbox had some patient information, including '
                'names, birth dates, partial Social Security numbers, medical '
                'record numbers, and home addresses. Complete social security '
                'numbers, financial records, and credit card information were '
                'not accessible. Chaplaincy Health Care offered free identity '
                'protection and credit monitoring to more than 1,000 people '
                'after a privacy breach.',
 'impact': {'data_compromised': ['Names',
                                 'Birth Dates',
                                 'Partial Social Security Numbers',
                                 'Medical Record Numbers',
                                 'Home Addresses'],
            'identity_theft_risk': 'High',
            'payment_information_risk': 'Low'},
 'initial_access_broker': {'entry_point': 'Phishing email'},
 'motivation': 'Gaining more email contacts',
 'post_incident_analysis': {'root_causes': 'Compromised email login '
                                           'credentials through phishing'},
 'response': {'remediation_measures': ['Offered free identity protection and '
                                       'credit monitoring']},
 'title': 'Chaplaincy Health Care Data Breach',
 'type': 'Data Breach',
 'vulnerability_exploited': 'Compromised email login credentials'}