Eskenazi Health was targeted by the cyber attack after sophisticated cybercriminals had gained access to its network, they used a malicious internet protocol address.
The compromised information includes Date(s) of service, name, date of birth, age, address, phone number, email address, medical record number, patient account number, diagnosis, clinical information, physician name, insurance information, prescriptions, face photographs, Social Security number, and credit card information.
The reason for death and the date of death may also be included in this information for dead patients.
The particular categories of affected individuals' information will be listed in a letter sent to them.
Eskenazi Health disconnected from the Internet and put the network down.
Prior to bringing its systems back online, Eskenazi Health painstakingly worked with its forensic team to conduct a rigorous examination, testing, and verification procedure.
Source: https://www.eskenazihealth.edu/news/update-on-eskenazi-health-cyber-incident
"id": "ESK1511131222",
"linkid": "eskenazi-health",
"type": "Breach",
"date": "08/2021",
"severity": "100",
"impact": "5",
"explanation": "Attack threatening the organization’s existence"