A data breach at Magellan Health Inc. has put the personal information of Florida Blue members at risk.
The breach was traced back to an employee who handles the healthcare provider's member data.
Magellan believes the employee's email was hacked in a phishing scam.
It was found that numerous personal identifiers including the members' names, dates of birth and prescriptions might've been accessed.
TPRM report: https://scoringcyber.rankiteo.com/company/magellan-health
"id": "mag54726423",
"linkid": "magellan-health",
"type": "Breach",
"date": "11/2019",
"severity": "60",
"impact": "3",
"explanation": "Attack with significant impact with internal employee data leaks"{'affected_entities': [{'customers_affected': 'Florida Blue members',
'industry': 'Healthcare',
'name': 'Magellan Health Inc.',
'type': 'Healthcare Provider'}],
'attack_vector': 'Phishing',
'data_breach': {'personally_identifiable_information': True,
'sensitivity_of_data': 'High',
'type_of_data_compromised': ['Personal Identifiers',
'Health Information']},
'description': 'A data breach at Magellan Health Inc. has put the personal '
'information of Florida Blue members at risk. The breach was '
'traced back to an employee who handles the healthcare '
"provider's member data. Magellan believes the employee's "
'email was hacked in a phishing scam. It was found that '
"numerous personal identifiers including the members' names, "
"dates of birth and prescriptions might've been accessed.",
'impact': {'data_compromised': ['Names', 'Dates of Birth', 'Prescriptions']},
'initial_access_broker': {'entry_point': 'Email Compromise'},
'post_incident_analysis': {'root_causes': 'Phishing scam leading to email '
'compromise'},
'title': 'Data Breach at Magellan Health Inc.',
'type': 'Data Breach',
'vulnerability_exploited': 'Email Compromise'}