Sensata Technologies, a leading industrial technology firm, experienced a ransomware attack that resulted in the theft of personal and protected health information of 15,630 members of the company’s Health and Welfare Benefit Plan. The data stolen included names, addresses, dates of birth, Social Security numbers, driver’s license numbers, passport numbers, financial account information, medical information, and health insurance information. The company implemented response protocols and offered complimentary credit and identity monitoring to affected individuals.
Source: https://www.hipaajournal.com/phi-stolen-in-sensata-technologies-ransomware-attack/
TPRM report: https://scoringcyber.rankiteo.com/company/sensata-technologies
"id": "sen641061725",
"linkid": "sensata-technologies",
"type": "Ransomware",
"date": "6/2025",
"severity": "100",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"{'affected_entities': [{'customers_affected': 15630,
'industry': 'Industrial Technology',
'name': 'Sensata Technologies, Inc.',
'type': 'Company'},
{'customers_affected': 240,
'industry': 'Healthcare',
'location': 'Hilliard, Ohio',
'name': 'Evoke Wellness',
'type': 'Company'},
{'customers_affected': 1543,
'industry': 'Healthcare',
'name': 'Blue Shield of California',
'type': 'Company'},
{'customers_affected': 1089,
'industry': 'Pharmacy Benefits Management',
'location': 'Louisville, Kentucky',
'name': 'AffirmedRx PBC',
'type': 'Company'}],
'attack_vector': 'Ransomware',
'data_breach': {'data_exfiltration': 'Yes',
'number_of_records_exposed': 15630,
'personally_identifiable_information': 'Yes',
'sensitivity_of_data': 'High',
'type_of_data_compromised': ['Names',
'Addresses',
'Date of Birth',
'Social Security Number',
'Tax Identification Number',
"Driver's License Number",
'State-Issued ID Card Number',
'Passport Number',
'Government-Issued ID Number',
'Financial Account Information',
'Payment Card Information',
'Medical Information',
'Health Insurance Information']},
'date_detected': '2025-04-06',
'description': 'A ransomware attack on Sensata Technologies involved the '
'theft of health and wellness plan data. A former Evoke '
'Wellness employee has been accused of stealing patient data '
'for identity theft, and limited PHI has been impermissibly '
'disclosed due to mailing errors at Blue Shield of California '
'and AffirmedRx PBC.',
'impact': {'data_compromised': ['PHI', 'PII'],
'identity_theft_risk': 'High',
'payment_information_risk': 'High'},
'initial_access_broker': {'data_sold_on_dark_web': 'Yes'},
'investigation_status': 'Ongoing',
'motivation': 'Data Theft',
'ransomware': {'data_encryption': 'Yes', 'data_exfiltration': 'Yes'},
'response': {'communication_strategy': 'Individual notification letters, '
'complimentary credit and identity '
'monitoring',
'containment_measures': 'Implemented response protocols',
'incident_response_plan_activated': 'Yes',
'law_enforcement_notified': 'Yes',
'remediation_measures': 'Enhanced security measures',
'third_party_assistance': 'Yes'},
'title': 'PHI Stolen in Sensata Technologies Ransomware Attack',
'type': 'Ransomware'}