Empress EMS (Emergency Medical Services), a New York-based emergency response and ambulance service provider suffered from data breach after ransomware attack.
The attacker had gained access to Empress EMS’ systems and exfiltrated “a small subset of files,” a day before deploying the encryption.
The compromised information includes patient names, dates of service, insurance information, and in some instances, Social Security numbers.
Empress informed the US, 318,55 people have been impacted by this occurrence, according to the Department of Health and Human Services.
Empress EMS is sending letters to those affected and providing credit monitoring services to those who qualify.
TPRM report: https://scoringcyber.rankiteo.com/company/empress-ambulance-svc
"id": "emp208161122",
"linkid": "empress-ambulance-svc",
"type": "Breach",
"date": "09/2022",
"severity": "100",
"impact": "7",
"explanation": "Attack that could injure or kill people"{'affected_entities': [{'customers_affected': 31855,
'industry': 'Healthcare',
'location': 'New York',
'name': 'Empress EMS',
'type': 'Emergency Medical Services'}],
'attack_vector': 'Ransomware',
'data_breach': {'data_exfiltration': 'a small subset of files',
'number_of_records_exposed': 31855,
'personally_identifiable_information': ['patient names',
'Social Security '
'numbers'],
'type_of_data_compromised': ['patient names',
'dates of service',
'insurance information',
'Social Security numbers']},
'description': 'Empress EMS (Emergency Medical Services), a New York-based '
'emergency response and ambulance service provider suffered '
'from data breach after ransomware attack. The attacker had '
'gained access to Empress EMS’ systems and exfiltrated “a '
'small subset of files,” a day before deploying the '
'encryption. The compromised information includes patient '
'names, dates of service, insurance information, and in some '
'instances, Social Security numbers. Empress informed the US, '
'318,55 people have been impacted by this occurrence, '
'according to the Department of Health and Human Services. '
'Empress EMS is sending letters to those affected and '
'providing credit monitoring services to those who qualify.',
'impact': {'data_compromised': ['patient names',
'dates of service',
'insurance information',
'Social Security numbers']},
'ransomware': {'data_encryption': 'deploying the encryption',
'data_exfiltration': 'a small subset of files'},
'references': [{'source': 'Department of Health and Human Services'}],
'response': {'communication_strategy': 'Sending letters to those affected and '
'providing credit monitoring services '
'to those who qualify.'},
'title': 'Empress EMS Data Breach and Ransomware Attack',
'type': 'Data Breach and Ransomware Attack'}