cyber Cyber Attack

Einstein Healthcare Network

Feb 8, 2022 1 min read
Einstein Healthcare Network

PA-based Einstein Healthcare Network suffered a phishing attack as unauthorized individuals who gained access to certain employee email accounts.

The compromised email accounts contained patients’ names, dates of birth, medical record or patient account numbers, and/or treatment or clinical information.

Those patients whose Social Security number was exposed have been offered a 1 year complimentary membership

Source: https://www.hipaajournal.com/228000-individuals-impacted-by-legacy-community-health-services-phishing-attack/

TPRM report: https://scoringcyber.rankiteo.com/company/einstein-healthcare-network

"id": "ein1119222",
"linkid": "einstein-healthcare-network",
"type": "Cyber Attack",
"date": "08/2020",
"severity": "80",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"
{'affected_entities': [{'industry': 'Healthcare',
                        'location': 'Pennsylvania, USA',
                        'name': 'Einstein Healthcare Network',
                        'type': 'Healthcare'}],
 'attack_vector': 'Email',
 'data_breach': {'personally_identifiable_information': ['Names',
                                                         'Dates of birth',
                                                         'Social Security '
                                                         'numbers'],
                 'sensitivity_of_data': 'High',
                 'type_of_data_compromised': ['Patient Information']},
 'description': 'PA-based Einstein Healthcare Network suffered a phishing '
                'attack as unauthorized individuals gained access to certain '
                'employee email accounts. The compromised email accounts '
                'contained patients’ names, dates of birth, medical record or '
                'patient account numbers, and/or treatment or clinical '
                'information. Those patients whose Social Security number was '
                'exposed have been offered a 1 year complimentary membership.',
 'impact': {'data_compromised': ['Patients’ names',
                                 'Dates of birth',
                                 'Medical record or patient account numbers',
                                 'Treatment or clinical information',
                                 'Social Security numbers'],
            'systems_affected': ['Email accounts']},
 'initial_access_broker': {'entry_point': 'Email'},
 'response': {'remediation_measures': ['Complimentary membership for affected '
                                       'patients']},
 'threat_actor': 'Unauthorized Individuals',
 'title': 'Phishing Attack on Einstein Healthcare Network',
 'type': 'Phishing Attack',
 'vulnerability_exploited': 'Human Factor'}
Published by
Harshit Kaur Bhatia
Harshit Kaur Bhatia
You might also like
Ransomware cyber

IdeaLab

public 1 min read
IdeaLab, a California-based technology startup incubator, experienced a data breach in October 2024 where hackers accessed sensitive information. The Hunters…
Jeremy C Jeremy C
Great! Next, complete checkout for full access to Rankiteo Blog.
Welcome back! You've successfully signed in.
You've successfully subscribed to Rankiteo Blog.
Success! Your account is fully activated, you now have access to all content.
Success! Your billing info has been updated.
Your billing was not updated.