A phishing issue at Sinai Health System affected at least two employees, potentially exposing 11,350 people's personal information.
The seven-hospital network claimed that it was unable to verify if any patient data included in the email accounts had been viewed.
The healthcare system stated that there was a small chance that the data was leaked.
Sinai notifies potentially affected patients and has partnered with an identity protection firm to offer free credit monitoring services for 12 months.
Source: https://www.chicagotribune.com/business/ct-biz-sinai-phishing-incident-20171207-story.html
TPRM report: https://scoringcyber.rankiteo.com/company/sinai-health-system-to
"id": "sin20405323",
"linkid": "sinai-health-system-to",
"type": "Data Leak",
"date": "12/2017",
"severity": "60",
"impact": "3",
"explanation": "Attack with significant impact with internal employee data leaks"
{'affected_entities': [{'customers_affected': 11350,
'industry': 'Healthcare',
'name': 'Sinai Health System',
'type': 'Healthcare'}],
'attack_vector': 'Email',
'customer_advisories': ['Notified potentially affected patients'],
'data_breach': {'number_of_records_exposed': 11350,
'personally_identifiable_information': ['Yes'],
'type_of_data_compromised': ['Personal Information']},
'description': 'A phishing issue at Sinai Health System affected at least two '
"employees, potentially exposing 11,350 people's personal "
'information.',
'impact': {'data_compromised': ['Personal Information'],
'identity_theft_risk': ['High']},
'response': {'communication_strategy': ['Notified potentially affected '
'patients',
'Offered free credit monitoring '
'services for 12 months'],
'third_party_assistance': ['Identity Protection Firm']},
'title': 'Phishing Incident at Sinai Health System',
'type': 'Phishing'}