Eskenazi Health was targeted by the cyber attack after sophisticated cybercriminals had gained access to its network, they used a malicious internet protocol address.
The compromised information includes Date(s) of service, name, date of birth, age, address, phone number, email address, medical record number, patient account number, diagnosis, clinical information, physician name, insurance information, prescriptions, face photographs, Social Security number, and credit card information.
The reason for death and the date of death may also be included in this information for dead patients.
The particular categories of affected individuals' information will be listed in a letter sent to them.
Eskenazi Health disconnected from the Internet and put the network down.
Prior to bringing its systems back online, Eskenazi Health painstakingly worked with its forensic team to conduct a rigorous examination, testing, and verification procedure.
Source: https://www.eskenazihealth.edu/news/update-on-eskenazi-health-cyber-incident
TPRM report: https://scoringcyber.rankiteo.com/company/eskenazi-health
"id": "esk1511131222",
"linkid": "eskenazi-health",
"type": "Breach",
"date": "08/2021",
"severity": "100",
"impact": "5",
"explanation": "Attack threatening the organization’s existence"
{'affected_entities': [{'industry': 'Healthcare',
'name': 'Eskenazi Health',
'type': 'Healthcare Provider'}],
'attack_vector': 'Malicious IP Address',
'customer_advisories': True,
'data_breach': {'personally_identifiable_information': True,
'sensitivity_of_data': 'High',
'type_of_data_compromised': ['Personal Information',
'Medical Information',
'Financial Information']},
'description': 'Eskenazi Health was targeted by a cyber attack after '
'sophisticated cybercriminals gained access to its network '
'using a malicious internet protocol address.',
'impact': {'data_compromised': ['Date(s) of service',
'Name',
'Date of birth',
'Age',
'Address',
'Phone number',
'Email address',
'Medical record number',
'Patient account number',
'Diagnosis',
'Clinical information',
'Physician name',
'Insurance information',
'Prescriptions',
'Face photographs',
'Social Security number',
'Credit card information',
'Reason for death',
'Date of death']},
'initial_access_broker': {'entry_point': 'Malicious IP Address'},
'response': {'communication_strategy': ['Sent letters to affected individuals '
'listing the particular categories of '
'compromised information'],
'containment_measures': ['Disconnected from the Internet',
'Put the network down'],
'remediation_measures': ['Conducted a rigorous examination, '
'testing, and verification procedure'],
'third_party_assistance': True},
'title': 'Eskenazi Health Cyber Attack',
'type': 'Data Breach'}