The email accounts of two employees of Sinai Health System were compromised in a phishing incident, that affected the information of 11,350 people.
Sinai notified the potentially affected patients and even offered them free credit monitoring services for 12 months.
Source: https://www.chicagotribune.com/business/ct-biz-sinai-phishing-incident-20171207-story.html
TPRM report: https://scoringcyber.rankiteo.com/company/sinaichicago
"id": "sin224691022",
"linkid": "sinaichicago",
"type": "Data Leak",
"date": "12/2017",
"severity": "60",
"impact": "3",
"explanation": "Attack with significant impact with internal employee data leaks"{'affected_entities': [{'customers_affected': 11350,
'industry': 'Healthcare',
'name': 'Sinai Health System',
'type': 'Healthcare'}],
'attack_vector': 'Email',
'customer_advisories': 'Notification to potentially affected patients',
'data_breach': {'number_of_records_exposed': 11350,
'type_of_data_compromised': 'Personal information'},
'description': 'The email accounts of two employees of Sinai Health System '
'were compromised in a phishing incident, affecting the '
'information of 11,350 people.',
'impact': {'data_compromised': 'Personal information of 11,350 people',
'systems_affected': 'Email accounts of two employees'},
'initial_access_broker': {'entry_point': 'Email'},
'post_incident_analysis': {'corrective_actions': 'Offered free credit '
'monitoring services for 12 '
'months',
'root_causes': 'Phishing attack'},
'response': {'communication_strategy': 'Notification to potentially affected '
'patients',
'remediation_measures': 'Free credit monitoring services for 12 '
'months'},
'title': 'Phishing Incident at Sinai Health System',
'type': 'Phishing',
'vulnerability_exploited': 'Human vulnerability through phishing'}