Breach cyber

Doctors Medical Center of Modesto

Dec 1, 2019 1 min read
Doctors Medical Center of Modesto

The California Office of the Attorney General reported on April 23, 2021, that Doctors Medical Center of Modesto experienced a data breach involving unsecured Protected Health Information (PHI) due to a misconfigured software update by the vendor Medifies on December 1, 2019. The breach potentially exposed various patient details, including names, addresses, and procedure information, though no Social Security numbers or financial information were involved.

Source: https://oag.ca.gov/ecrime/databreach/reports/sb24-540272

TPRM report: https://www.rankiteo.com/company/doctors-medical-center-of-modesto

"id": "doc648072625",
"linkid": "doctors-medical-center-of-modesto",
"type": "Breach",
"date": "12/2019",
"severity": "25",
"impact": "1",
"explanation": "Attack without any consequences"
{'affected_entities': [{'industry': 'Healthcare',
                        'location': 'Modesto, California',
                        'name': 'Doctors Medical Center of Modesto',
                        'type': 'Healthcare'}],
 'attack_vector': 'Misconfigured Software Update',
 'data_breach': {'personally_identifiable_information': ['names', 'addresses'],
                 'sensitivity_of_data': 'High',
                 'type_of_data_compromised': ['names',
                                              'addresses',
                                              'procedure information']},
 'date_detected': '2021-04-23',
 'date_publicly_disclosed': '2021-04-23',
 'description': 'The California Office of the Attorney General reported on '
                'April 23, 2021, that Doctors Medical Center of Modesto '
                'experienced a data breach involving unsecured Protected '
                'Health Information (PHI) due to a misconfigured software '
                'update by the vendor Medifies on December 1, 2019. The breach '
                'potentially exposed various patient details, including names, '
                'addresses, and procedure information, though no Social '
                'Security numbers or financial information were involved.',
 'impact': {'data_compromised': ['names',
                                 'addresses',
                                 'procedure information']},
 'post_incident_analysis': {'root_causes': 'Misconfigured software update'},
 'references': [{'date_accessed': '2021-04-23',
                 'source': 'California Office of the Attorney General'}],
 'threat_actor': 'Medifies (vendor)',
 'title': 'Data Breach at Doctors Medical Center of Modesto',
 'type': 'Data Breach',
 'vulnerability_exploited': 'Misconfiguration'}
Published by
Jeremy C
Jeremy C
You might also like
Great! Next, complete checkout for full access to Rankiteo Blog.
Welcome back! You've successfully signed in.
You've successfully subscribed to Rankiteo Blog.
Success! Your account is fully activated, you now have access to all content.
Success! Your billing info has been updated.
Your billing was not updated.