Kaleida Health

Kaleida Health suffered from a data breach incident after an unauthorized third party potentially accessed an employee’s email account.

The compromised information includes a small number of Kaleida Health email accounts, which included patients’ names, medical record numbers, dates of birth, diagnoses, treatment information, or other clinical information.

Social Security numbers and financial information were not contained in the email accounts.

They immediately investigated the incident and hired a leading outside computer forensic firm to assist it and enhanced security measures relating to the protection of patient information.

Source: https://www.databreaches.net/ny-kaleida-health-notifies-2789-patients-about-phishing-incident/

"id": "KAL185381122",
"linkid": "kaleida-health",
"type": "Breach",
"date": "08/2017",
"severity": "60",
"impact": "3",
"explanation": "Attack with significant impact with internal employee data leaks"