Riverside Medical Group

Riverside Medical Group (RMG) suffered a breach that impacted an independent legacy server at its West Orange, New Jersey clinic.

The breach impacted the server that was maintained by one provider who used it to maintain some of his patients’ immunization records and impacted 12,499 individuals.

The exposed information on the server included names, gender, phone numbers, email addresses, immunization records, dates of birth, provider information, health plan information, and some Social Security numbers.

Source: https://healthitsecurity.com/news/michigan-medicine-notifies-33k-patients-of-phishing-attack

TPRM report: https://scoringcyber.rankiteo.com/company/riversidemedicalgroup

"id": "riv1231122",
"linkid": "riversidemedicalgroup",
"type": "Breach",
"date": "10/2022",
"severity": "80",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"

{'affected_entities': [{'customers_affected': 12499,
                        'industry': 'Healthcare',
                        'location': 'West Orange, New Jersey',
                        'name': 'Riverside Medical Group',
                        'type': 'Medical Group'}],
 'data_breach': {'number_of_records_exposed': 12499,
                 'personally_identifiable_information': True,
                 'sensitivity_of_data': 'High',
                 'type_of_data_compromised': ['names',
                                              'gender',
                                              'phone numbers',
                                              'email addresses',
                                              'immunization records',
                                              'dates of birth',
                                              'provider information',
                                              'health plan information',
                                              'some Social Security numbers']},
 'description': 'Riverside Medical Group (RMG) suffered a breach that impacted '
                'an independent legacy server at its West Orange, New Jersey '
                'clinic. The breach impacted the server that was maintained by '
                'one provider who used it to maintain some of his patients’ '
                'immunization records and impacted 12,499 individuals. The '
                'exposed information on the server included names, gender, '
                'phone numbers, email addresses, immunization records, dates '
                'of birth, provider information, health plan information, and '
                'some Social Security numbers.',
 'impact': {'data_compromised': ['names',
                                 'gender',
                                 'phone numbers',
                                 'email addresses',
                                 'immunization records',
                                 'dates of birth',
                                 'provider information',
                                 'health plan information',
                                 'some Social Security numbers'],
            'systems_affected': ['independent legacy server']},
 'title': 'Riverside Medical Group Data Breach',
 'type': 'Data Breach'}

Riverside Medical Group

Gloucester County

Federal Bureau of Investigation (FBI)

Microsoft