A security flaw in the patient portal of Molina Healthcare was exploited in a cyber security incident.
The incident exposed the patients' names, addresses, birthdates, diagnosis, medication, and other medically pertinent information.
Molina Healthcare immediately shut down the ePortal system temporarily to perform additional testing of their system security and restore their system.
Source: https://www.healthcareitnews.com/news/molina-healthcare-breached-exposed-patient-data-over-month
TPRM report: https://scoringcyber.rankiteo.com/company/molina-healthcare
"id": "mol233819422",
"linkid": "molina-healthcare",
"type": "Vulnerability",
"date": "05/2017",
"severity": "80",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"{'affected_entities': [{'industry': 'Healthcare',
'name': 'Molina Healthcare',
'type': 'Healthcare Provider'}],
'attack_vector': 'Exploitation of a Security Flaw',
'data_breach': {'personally_identifiable_information': True,
'sensitivity_of_data': 'High',
'type_of_data_compromised': ['Names',
'Addresses',
'Birthdates',
'Diagnosis',
'Medication',
'Other medically pertinent '
'information']},
'description': 'A security flaw in the patient portal of Molina Healthcare '
"was exploited, exposing patients' names, addresses, "
'birthdates, diagnosis, medication, and other medically '
'pertinent information.',
'impact': {'data_compromised': ['Names',
'Addresses',
'Birthdates',
'Diagnosis',
'Medication',
'Other medically pertinent information'],
'downtime': 'Temporary shutdown of ePortal system',
'systems_affected': 'Patient Portal (ePortal)'},
'response': {'containment_measures': 'Shutdown of ePortal system',
'recovery_measures': 'Restoration of ePortal system',
'remediation_measures': 'Additional testing of system security'},
'title': 'Molina Healthcare Patient Portal Data Breach',
'type': 'Data Breach',
'vulnerability_exploited': 'Security flaw in the patient portal'}