Kaleida Health suffered from a data breach incident after an unauthorized third party potentially accessed an employee’s email account.
The compromised information includes a small number of Kaleida Health email accounts, which included patients’ names, medical record numbers, dates of birth, diagnoses, treatment information, or other clinical information.
Social Security numbers and financial information were not contained in the email accounts.
They immediately investigated the incident and hired a leading outside computer forensic firm to assist it and enhanced security measures relating to the protection of patient information.
Source: https://www.databreaches.net/ny-kaleida-health-notifies-2789-patients-about-phishing-incident/
TPRM report: https://scoringcyber.rankiteo.com/company/kaleida-health
"id": "kal185381122",
"linkid": "kaleida-health",
"type": "Breach",
"date": "08/2017",
"severity": "60",
"impact": "3",
"explanation": "Attack with significant impact with internal employee data leaks"
{'affected_entities': [{'industry': 'Healthcare',
'name': 'Kaleida Health',
'type': 'Healthcare Provider'}],
'attack_vector': 'Email Account Compromise',
'data_breach': {'number_of_records_exposed': 'A small number',
'personally_identifiable_information': ["Patients' names",
'Dates of birth',
'Medical record '
'numbers'],
'sensitivity_of_data': 'High',
'type_of_data_compromised': ["Patients' names",
'Medical record numbers',
'Dates of birth',
'Diagnoses',
'Treatment information',
'Other clinical information']},
'description': 'Kaleida Health suffered from a data breach incident after an '
'unauthorized third party potentially accessed an employee’s '
'email account. The compromised information includes a small '
'number of Kaleida Health email accounts, which included '
'patients’ names, medical record numbers, dates of birth, '
'diagnoses, treatment information, or other clinical '
'information.',
'impact': {'data_compromised': ["Patients' names",
'Medical record numbers',
'Dates of birth',
'Diagnoses',
'Treatment information',
'Other clinical information'],
'systems_affected': ['Email Accounts']},
'initial_access_broker': {'entry_point': 'Employee Email Account',
'high_value_targets': ["Patients' names",
'Medical record numbers',
'Dates of birth',
'Diagnoses',
'Treatment information',
'Other clinical '
'information']},
'post_incident_analysis': {'corrective_actions': ['Enhanced security measures '
'relating to the protection '
'of patient information']},
'response': {'incident_response_plan_activated': True,
'remediation_measures': ['Enhanced security measures relating to '
'the protection of patient information'],
'third_party_assistance': ['Leading outside computer forensic '
'firm']},
'threat_actor': 'Unauthorized Third Party',
'title': 'Kaleida Health Email Account Breach',
'type': 'Data Breach',
'vulnerability_exploited': 'Unauthorized Access to Employee Email Account'}