Kelberman Center experienced a data breach.
The breach impacted 3,501 individuals.
The Kelberman Center is a provider of autism services for children and adults in Central New York.
Kelberman discovered suspicious activity within one user’s email inbox.
Further, it was revealed that an unauthorized party had potentially accessed a limited number of Kelberman mailboxes between October 31 and November 3, 2022.
The unauthorized actor accessed files that contained protected health information, including names, dates of birth, diagnosis and treatment information, and provider information.
Source: https://healthitsecurity.com/news/3-specialty-practices-report-healthcare-data-breaches
TPRM report: https://scoringcyber.rankiteo.com/company/kelberman
"id": "kel211927123",
"linkid": "kelberman",
"type": "Breach",
"date": "10/2022",
"severity": "60",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"{'affected_entities': [{'customers_affected': 3501,
'industry': 'Healthcare',
'location': 'Central New York',
'name': 'Kelberman Center',
'type': 'Non-Profit Organization'}],
'attack_vector': 'Email Compromise',
'data_breach': {'number_of_records_exposed': 3501,
'personally_identifiable_information': ['Names',
'Dates of Birth',
'Diagnosis and '
'Treatment '
'Information',
'Provider '
'Information'],
'sensitivity_of_data': 'High',
'type_of_data_compromised': 'Protected Health Information'},
'description': 'Kelberman Center experienced a data breach that impacted '
'3,501 individuals. The breach involved unauthorized access to '
'a limited number of Kelberman mailboxes, exposing protected '
'health information.',
'impact': {'data_compromised': 'Protected Health Information',
'systems_affected': 'Email Inboxes'},
'initial_access_broker': {'entry_point': 'Email'},
'threat_actor': 'Unauthorized Party',
'title': 'Kelberman Center Data Breach',
'type': 'Data Breach'}