Social Action Community Health System (SAC Health) suffered a data breach after a off-site storage facility suffered a security incident which impacted an undisclosed number of its patients.
An unauthorized individual stole six boxes of paper documents containing patient records containing the names, dates of birth, addresses, and diagnosis codes.
SAC Health immediately investigated the incident to know the extent of the breach.
Source: https://healthitsecurity.com/news/illinois-gastroenterology-group-data-breach-impacts-228k
TPRM report: https://scoringcyber.rankiteo.com/company/sachealth
"id": "sac35611622",
"linkid": "sachealth",
"type": "Breach",
"date": "03/2022",
"severity": "75",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"
{'affected_entities': [{'industry': 'Healthcare',
'name': 'Social Action Community Health System',
'type': 'Healthcare Provider'}],
'attack_vector': 'Physical Theft',
'data_breach': {'file_types_exposed': 'Paper Documents',
'personally_identifiable_information': ['Names',
'Dates of Birth',
'Addresses'],
'sensitivity_of_data': 'Personal Health Information',
'type_of_data_compromised': ['Names',
'Dates of Birth',
'Addresses',
'Diagnosis Codes']},
'description': 'Social Action Community Health System (SAC Health) suffered a '
'data breach after an off-site storage facility experienced a '
'security incident, impacting an undisclosed number of its '
'patients. An unauthorized individual stole six boxes of paper '
'documents containing patient records, including names, dates '
'of birth, addresses, and diagnosis codes.',
'impact': {'data_compromised': ['Names',
'Dates of Birth',
'Addresses',
'Diagnosis Codes']},
'investigation_status': 'Investigated',
'threat_actor': 'Unauthorized Individual',
'title': 'SAC Health Data Breach',
'type': 'Data Breach',
'vulnerability_exploited': 'Inadequate Physical Security'}