Montefiore Medical Center experienced a security breach.
A former employee had recently stolen personal information from roughly 4,000 patient records, which led Montefiore to terminate the employee upon learning of the security breach and potential identity theft.
Addresses, dates of birth, and Social Security numbers were compromised over a period of more than two years, from January 2017 to July of that year.
TPRM report: https://scoringcyber.rankiteo.com/company/montefiore-health-system
"id": "mon205019123",
"linkid": "montefiore-health-system",
"type": "Breach",
"date": "09/2020",
"severity": "60",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"{'affected_entities': [{'customers_affected': 4000,
'industry': 'Healthcare',
'name': 'Montefiore Medical Center',
'type': 'Healthcare Provider'}],
'attack_vector': 'Insider Threat',
'data_breach': {'data_exfiltration': True,
'number_of_records_exposed': 4000,
'personally_identifiable_information': True,
'sensitivity_of_data': 'High',
'type_of_data_compromised': ['Personal Information']},
'date_detected': 'July 2017',
'description': 'A former employee stole personal information from roughly '
'4,000 patient records over a period of more than two years, '
'from January 2017 to July 2017.',
'impact': {'data_compromised': ['Addresses',
'Dates of Birth',
'Social Security Numbers'],
'identity_theft_risk': 'High'},
'motivation': 'Data Theft',
'threat_actor': 'Former Employee',
'title': 'Montefiore Medical Center Data Breach',
'type': 'Data Breach',
'vulnerability_exploited': 'Unauthorized Access'}