Molina Healthcare

MolinaHealthcare.com suffered from a data breach incident that exposed every other patient's data to anyone logged into the site.

In this attack a single hyperlink to a patient record would allow an attacker to enumerate and download all other claims.

The exposed data includes names, addresses and dates of birth, as well as potentially sensitive information that may point to specific diseases, such as medical procedure codes and any prescribed medications.

They took their ePortal temporarily offline to perform additional testing of their system security.

Source: https://www.scmagazine.com/news/content/molinahealthcare-com-patient-records-left-exposed

"id": "MOL181123922",
"linkid": "molina-healthcare",
"type": "Breach",
"date": "05/2017",
"severity": "60",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"