cyber Breach

Scott County, Iowa

May 20, 2022 1 min read
Scott County, Iowa

Scott County, Iowa suffered a data theft incident after an unauthorized party accessed its employee email account.

The hacker sent unauthorized messages including the information related to clients, employees of Scott County, and other individuals who received healthcare treatment or services facilitated by Scott County to internal and external users from the employee account

Scott County investigated the incident with external cyber security experts and mailed the notice letters to the affected individuals.

Source: https://www.scottcountyiowa.gov/administration/post/notice-data-privacy-event

TPRM report: https://scoringcyber.rankiteo.com/company/scott-county-iowa

"id": "sco03219522",
"linkid": "scott-county-iowa",
"type": "Breach",
"date": "11/2021",
"severity": "80",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"
{'affected_entities': [{'industry': 'Public Administration',
                        'location': 'Scott County, Iowa',
                        'name': 'Scott County, Iowa',
                        'type': 'Local Government'}],
 'attack_vector': 'Email Account Compromise',
 'customer_advisories': ['Mailed Notice Letters to Affected Individuals'],
 'data_breach': {'type_of_data_compromised': ['Client Information',
                                              'Employee Information',
                                              'Healthcare Treatment '
                                              'Information']},
 'description': 'Scott County, Iowa suffered a data theft incident after an '
                'unauthorized party accessed its employee email account. The '
                'hacker sent unauthorized messages including the information '
                'related to clients, employees of Scott County, and other '
                'individuals who received healthcare treatment or services '
                'facilitated by Scott County to internal and external users '
                'from the employee account.',
 'impact': {'data_compromised': ['Client Information',
                                 'Employee Information',
                                 'Healthcare Treatment Information'],
            'systems_affected': ['Email Account']},
 'initial_access_broker': {'entry_point': 'Email Account Compromise'},
 'investigation_status': 'Investigated with External Cyber Security Experts',
 'motivation': 'Data Theft',
 'references': [{'source': 'Cyber Incident Description'}],
 'response': {'communication_strategy': ['Mailed Notice Letters to Affected '
                                         'Individuals'],
              'third_party_assistance': ['External Cyber Security Experts']},
 'threat_actor': 'Unknown',
 'title': 'Scott County Data Theft Incident',
 'type': 'Data Theft',
 'vulnerability_exploited': 'Unauthorized Access to Email Account'}
Published by
Harshit Kaur Bhatia
Harshit Kaur Bhatia
You might also like
Great! Next, complete checkout for full access to Rankiteo Blog.
Welcome back! You've successfully signed in.
You've successfully subscribed to Rankiteo Blog.
Success! Your account is fully activated, you now have access to all content.
Success! Your billing info has been updated.
Your billing was not updated.