Littleton Regional Hospital fired an employee that snooped over some patient records in an unauthorized way.
The unauthorized access of several patients’ records included their contact information, dates of birth, insurance information, physicians’ names, medical history and allergies, date, type, time, and nature of physician visits, and provider notes for the visit.
Source: https://www.databreaches.net/unauthorized-access-at-littleton-regional-hospital-results-in-firing/
TPRM report: https://scoringcyber.rankiteo.com/company/littletonhealthcare
"id": "lit233021123",
"linkid": "littletonhealthcare",
"type": "Breach",
"date": "08/2010",
"severity": "60",
"impact": "3",
"explanation": "Attack with significant impact with internal employee data leaks"{'affected_entities': [{'industry': 'Healthcare',
'location': 'Littleton',
'name': 'Littleton Regional Hospital',
'type': 'Healthcare Provider'}],
'attack_vector': 'Insider Threat',
'data_breach': {'personally_identifiable_information': ['Contact Information',
'Dates of Birth'],
'sensitivity_of_data': 'High',
'type_of_data_compromised': ['Contact Information',
'Dates of Birth',
'Insurance Information',
"Physicians' Names",
'Medical History and Allergies',
'Date, Type, Time, and Nature of '
'Physician Visits',
'Provider Notes for the Visit']},
'description': 'An employee at Littleton Regional Hospital was fired for '
'unauthorized access to patient records, which included '
'sensitive information.',
'impact': {'data_compromised': ['Contact Information',
'Dates of Birth',
'Insurance Information',
"Physicians' Names",
'Medical History and Allergies',
'Date, Type, Time, and Nature of Physician '
'Visits',
'Provider Notes for the Visit']},
'motivation': 'Unknown',
'threat_actor': 'Employee',
'title': 'Unauthorized Access to Patient Records at Littleton Regional '
'Hospital',
'type': 'Data Breach',
'vulnerability_exploited': 'Unauthorized Access'}