The Vermont Office of the Attorney General reported a data breach involving Ciox Health, doing business as Datavant Group, on December 6, 2024. The incident was a phishing email attack that allowed unauthorized access to certain Datavant data between May 8, 2024 and May 9, 2024, potentially impacting personal information such as names, addresses, and financial information; the exact number of individuals affected is unspecified.
TPRM report: https://scoringcyber.rankiteo.com/company/datavant
"id": "dat938072725",
"linkid": "datavant",
"type": "Breach",
"date": "5/2024",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"{'affected_entities': [{'industry': 'Health',
'name': 'Datavant Group',
'type': 'Company'}],
'attack_vector': 'Phishing Email',
'data_breach': {'type_of_data_compromised': ['names',
'addresses',
'financial information']},
'date_detected': '2024-12-06',
'date_publicly_disclosed': '2024-12-06',
'description': 'A phishing email attack allowed unauthorized access to '
'certain Datavant data, potentially impacting personal '
'information such as names, addresses, and financial '
'information.',
'impact': {'data_compromised': ['names',
'addresses',
'financial information']},
'references': [{'date_accessed': '2024-12-06',
'source': 'Vermont Office of the Attorney General'}],
'title': 'Data Breach at Datavant Group',
'type': 'Data Breach'}