Edinburgh Mental Health

An Edinburgh mental health clinic suffered from a data breach incident that affected hundreds of client contact details after the phishing scam.

The compromised information contained a number of important documents and their e-mail addresses.

The hack did not provide access to medical and health records because they are stored on a separate, encrypted server.

They investigated the incident and immediately took action which involved locating and removing the phisher from their systems, securing email traffic and alerting those clients whose information potentially been compromised.

They also alerted the police and the ICO. They collaborated with IT and data specialists to close the breach, safeguard the data, and contact people who would likely be impacted.

Source: https://www.itgovernance.co.uk/blog/list-of-data-breaches-and-cyber-attacks-in-may-2021-116-million-records-breached

TPRM report: https://scoringcyber.rankiteo.com/company/edinburgh-mental-health

"id": "edi2335261222",
"linkid": "edinburgh-mental-health",
"type": "Breach",
"date": "05/2021",
"severity": "50",
"impact": "2",
"explanation": "Attack limited on finance or reputation"

{'affected_entities': [{'customers_affected': 'Hundreds',
                        'industry': 'Mental Health',
                        'location': 'Edinburgh',
                        'name': 'Edinburgh Mental Health Clinic',
                        'type': 'Healthcare'}],
 'attack_vector': 'Phishing',
 'customer_advisories': 'Alerting those clients whose information potentially '
                        'been compromised',
 'data_breach': {'number_of_records_exposed': 'Hundreds',
                 'type_of_data_compromised': ['Client contact details',
                                              'Important documents',
                                              'E-mail addresses']},
 'description': 'An Edinburgh mental health clinic suffered from a data breach '
                'incident that affected hundreds of client contact details '
                'after the phishing scam. The compromised information '
                'contained a number of important documents and their e-mail '
                'addresses. The hack did not provide access to medical and '
                'health records because they are stored on a separate, '
                'encrypted server. They investigated the incident and '
                'immediately took action which involved locating and removing '
                'the phisher from their systems, securing email traffic and '
                'alerting those clients whose information potentially been '
                'compromised. They also alerted the police and the ICO. They '
                'collaborated with IT and data specialists to close the '
                'breach, safeguard the data, and contact people who would '
                'likely be impacted.',
 'impact': {'data_compromised': ['Client contact details',
                                 'Important documents',
                                 'E-mail addresses']},
 'regulatory_compliance': {'regulatory_notifications': 'ICO'},
 'response': {'communication_strategy': 'Alerting those clients whose '
                                        'information potentially been '
                                        'compromised',
              'containment_measures': ['Locating and removing the phisher from '
                                       'their systems',
                                       'Securing email traffic'],
              'law_enforcement_notified': 'Yes',
              'recovery_measures': ['Contacting people who would likely be '
                                    'impacted'],
              'remediation_measures': ['Closing the breach',
                                       'Safeguarding the data'],
              'third_party_assistance': 'IT and data specialists'},
 'title': 'Data Breach at Edinburgh Mental Health Clinic',
 'type': 'Data Breach'}