Chilton Medical Center suffered from a data breach incident after an former employee sold a hard drive containing the information online.
The compromised information includes patients’ names, dates of birth, addresses, medical record numbers, allergies, and medications.
No Social Security numbers, financial information, or medical records were affected.
They investigated the incident and enhanced their processes and controls to help prevent something like this from happening again.
TPRM report: https://scoringcyber.rankiteo.com/company/chilton-hospital
"id": "chi71828223",
"linkid": "chilton-hospital",
"type": "Breach",
"date": "12/2017",
"severity": "60",
"impact": "3",
"explanation": "Attack with significant impact with internal employee data leaks"{'affected_entities': [{'industry': 'Healthcare',
'name': 'Chilton Medical Center',
'type': 'Healthcare'}],
'attack_vector': 'Insider Threat',
'data_breach': {'data_exfiltration': True,
'personally_identifiable_information': True,
'sensitivity_of_data': 'High',
'type_of_data_compromised': ['Patient Information']},
'description': 'Chilton Medical Center suffered from a data breach incident '
'after a former employee sold a hard drive containing patient '
'information online.',
'impact': {'data_compromised': ['Patients’ names',
'Dates of birth',
'Addresses',
'Medical record numbers',
'Allergies',
'Medications']},
'motivation': 'Financial Gain',
'response': {'remediation_measures': ['Enhanced processes and controls']},
'threat_actor': 'Former Employee',
'title': 'Chilton Medical Center Data Breach',
'type': 'Data Breach',
'vulnerability_exploited': 'Unauthorized Data Access'}