cyber Cyber Attack

MedCare Urgent Care

May 11, 2023 1 min read
MedCare Urgent Care

MedSpring Urgent Care experienced a medical breach.

A third party had unauthorized access to personal information about certain patients who were treated at their facilities located in Illinois.

An employee was the victim of an email phishing scam that have resulted in unauthorized access to the employee’s email account.

Compromised information are usernames and passwords, patients’ names, account numbers, medical record numbers, and dates and services relating to the provision of medical services.

Source: https://www.databreaches.net/tx-medspring-urgent-care-notifies-13000-patients-after-phishing-attack/

TPRM report: https://scoringcyber.rankiteo.com/company/medcare-urgent-care

"id": "med05781122",
"linkid": "medcare-urgent-care",
"type": "Breach",
"date": "08/2018",
"severity": "60",
"impact": "3",
"explanation": "Attack with significant impact with internal employee data leaks"
{'affected_entities': [{'industry': 'Healthcare',
                        'location': 'Illinois',
                        'name': 'MedSpring Urgent Care',
                        'type': 'Healthcare'}],
 'attack_vector': 'Phishing',
 'data_breach': {'personally_identifiable_information': True,
                 'type_of_data_compromised': ['usernames and passwords',
                                              'patients’ names',
                                              'account numbers',
                                              'medical record numbers',
                                              'dates and services relating to '
                                              'the provision of medical '
                                              'services']},
 'description': 'MedSpring Urgent Care experienced a medical breach where a '
                'third party had unauthorized access to personal information '
                'about certain patients who were treated at their facilities '
                'located in Illinois. An employee was the victim of an email '
                'phishing scam that resulted in unauthorized access to the '
                'employee’s email account. Compromised information included '
                'usernames and passwords, patients’ names, account numbers, '
                'medical record numbers, and dates and services relating to '
                'the provision of medical services.',
 'impact': {'data_compromised': ['usernames and passwords',
                                 'patients’ names',
                                 'account numbers',
                                 'medical record numbers',
                                 'dates and services relating to the provision '
                                 'of medical services']},
 'initial_access_broker': {'entry_point': 'Email Phishing Scam'},
 'post_incident_analysis': {'root_causes': 'Email Phishing Scam'},
 'title': 'MedSpring Urgent Care Medical Breach',
 'type': 'Data Breach',
 'vulnerability_exploited': 'Email Phishing Scam'}
Published by
Jeremy C
Jeremy C
You might also like
Ransomware cyber

IdeaLab

public 1 min read
IdeaLab, a California-based technology startup incubator, experienced a data breach in October 2024 where hackers accessed sensitive information. The Hunters…
Jeremy C Jeremy C
Great! Next, complete checkout for full access to Rankiteo Blog.
Welcome back! You've successfully signed in.
You've successfully subscribed to Rankiteo Blog.
Success! Your account is fully activated, you now have access to all content.
Success! Your billing info has been updated.
Your billing was not updated.