Navicent Health, one of Middle Georgia’s largest employers and healthcare providers, announced that it was the victim of a cyber attack that targeted its email system.
Names, Social Security numbers, dates of birth, and medical information such as billing and appointment scheduling were among patients’ personal information that could have been compromised as a result of the hack
The organization does not yet know if any fraud or identity theft has occurred as a result of the attack, It also is not known if the information was viewed or captured.
There is no evidence that the cyber attack affected the hospital system’s computer networks or its electronic medical record systems, according to the release.
Source: https://www.macon.com/news/local/crime/article228281814.html
TPRM report: https://scoringcyber.rankiteo.com/company/atriumhealthnavicent
"id": "nav9527323",
"linkid": "atriumhealthnavicent",
"type": "Data Leak",
"date": "03/2019",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"
{'affected_entities': [{'industry': 'Healthcare',
'location': 'Middle Georgia',
'name': 'Navicent Health',
'type': 'Healthcare Provider'}],
'attack_vector': 'Email System',
'data_breach': {'personally_identifiable_information': True,
'sensitivity_of_data': 'High',
'type_of_data_compromised': ['Personal Information',
'Medical Information']},
'description': 'Navicent Health, one of Middle Georgia’s largest employers '
'and healthcare providers, announced that it was the victim of '
'a cyber attack that targeted its email system. Names, Social '
'Security numbers, dates of birth, and medical information '
'such as billing and appointment scheduling were among '
'patients’ personal information that could have been '
'compromised as a result of the hack. The organization does '
'not yet know if any fraud or identity theft has occurred as a '
'result of the attack. It also is not known if the information '
'was viewed or captured. There is no evidence that the cyber '
'attack affected the hospital system’s computer networks or '
'its electronic medical record systems, according to the '
'release.',
'impact': {'data_compromised': ['Names',
'Social Security numbers',
'Dates of birth',
'Medical information',
'Billing information',
'Appointment scheduling'],
'identity_theft_risk': True,
'systems_affected': ['Email system']},
'title': "Cyber Attack on Navicent Health's Email System",
'type': 'Cyber Attack'}