cyber Cyber Attack

Eyemart Express

May 11, 2023 1 min read
Eyemart Express

Eyemart Express, LLC was targeted in a cyber attack that affected its certain email accounts.

Though the attack did not affect Eyemart Express’ internal systems that store medical or billing records but Eyemart Express immediately took steps to stop the attack and conducted a thorough investigation of the incident.

The attack resulted in an unauthorized actor accessing limited personal information for a small number of Eyemart Express customers including names, e-mail addresses, and the subject lines of email communications between Eyemart Express and those customers, such as email subject lines regarding eye exam appointments and eyeglass order status updates.

Source: https://www.databreaches.net/eyemart-express-notifies-patients-of-breach/

TPRM report: https://scoringcyber.rankiteo.com/company/eyemart-express

"id": "eye2355211222",
"linkid": "eyemart-express",
"type": "Data Leak",
"date": "03/2021",
"severity": "50",
"impact": "2",
"explanation": "Attack limited on finance or reputation"
{'affected_entities': [{'customers_affected': 'A small number',
                        'industry': 'Healthcare',
                        'name': 'Eyemart Express, LLC',
                        'type': 'Organization'}],
 'attack_vector': 'Phishing or Email Compromise',
 'data_breach': {'data_exfiltration': True,
                 'number_of_records_exposed': 'A small number',
                 'personally_identifiable_information': True,
                 'sensitivity_of_data': 'Low',
                 'type_of_data_compromised': ['Names',
                                              'Email Addresses',
                                              'Email Subject Lines']},
 'description': 'Eyemart Express, LLC was targeted in a cyber attack that '
                'affected its certain email accounts. Though the attack did '
                'not affect Eyemart Express’ internal systems that store '
                'medical or billing records, Eyemart Express immediately took '
                'steps to stop the attack and conducted a thorough '
                'investigation of the incident. The attack resulted in an '
                'unauthorized actor accessing limited personal information for '
                'a small number of Eyemart Express customers including names, '
                'e-mail addresses, and the subject lines of email '
                'communications between Eyemart Express and those customers, '
                'such as email subject lines regarding eye exam appointments '
                'and eyeglass order status updates.',
 'impact': {'data_compromised': ['Names',
                                 'Email Addresses',
                                 'Email Subject Lines'],
            'systems_affected': 'Email Accounts'},
 'initial_access_broker': {'entry_point': 'Email Accounts'},
 'investigation_status': 'Conducted a thorough investigation',
 'motivation': 'Data Theft',
 'response': {'containment_measures': 'Steps to stop the attack'},
 'threat_actor': 'Unauthorized Actor',
 'title': 'Eyemart Express Email Account Breach',
 'type': 'Data Breach',
 'vulnerability_exploited': 'Email Security'}
Published by
Harshit Kaur Bhatia
Harshit Kaur Bhatia
You might also like
Great! Next, complete checkout for full access to Rankiteo Blog.
Welcome back! You've successfully signed in.
You've successfully subscribed to Rankiteo Blog.
Success! Your account is fully activated, you now have access to all content.
Success! Your billing info has been updated.
Your billing was not updated.