cyber Breach

Sunshine Behavioral Health

May 11, 2023 1 min read
Sunshine Behavioral Health

3500 patients were affected by this incident, according to Sunshine Behavioural Health's notification to HHS. Additionally, the box for business associate was checked.

It was discovered that a mistake had given some people receiving treatment for drug or alcohol addiction's personal and financial information away.

Someone who shared the leaked data with DataBreaches.net in August found the leak. This blogger called Sunshine Behavioural Health on September 4 to inform them of the leaked data after confirming that the data had been made public.

Full name, date of birth, postal and email addresses, telephone numbers, full credit card numbers with expiration dates (month/year), full CVV code, health insurance membership number, account number, statements regarding insurance benefits, and amounts due and paid were among the patient information types that were discovered in the files.

Source: https://www.databreaches.net/exclusive-more-than-90000-patient-billing-files-from-an-alcohol-and-drug-addiction-treatment-network-exposed-online/

TPRM report: https://scoringcyber.rankiteo.com/company/sunshine-behavioral-health

"id": "sun221730423",
"linkid": "sunshine-behavioral-health",
"type": "Data Leak",
"date": "11/2019",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"
{'affected_entities': [{'customers_affected': 3500,
                        'industry': 'Healthcare',
                        'name': 'Sunshine Behavioural Health',
                        'type': 'Healthcare Provider'}],
 'data_breach': {'data_exfiltration': True,
                 'number_of_records_exposed': 3500,
                 'personally_identifiable_information': True,
                 'sensitivity_of_data': 'High',
                 'type_of_data_compromised': ['Personal Information',
                                              'Financial Information']},
 'date_detected': 'August 2023',
 'date_publicly_disclosed': 'September 4, 2023',
 'description': 'A data breach at Sunshine Behavioural Health exposed personal '
                'and financial information of 3500 patients.',
 'impact': {'data_compromised': ['Full name',
                                 'Date of birth',
                                 'Postal and email addresses',
                                 'Telephone numbers',
                                 'Full credit card numbers with expiration '
                                 'dates (month/year)',
                                 'Full CVV code',
                                 'Health insurance membership number',
                                 'Account number',
                                 'Statements regarding insurance benefits',
                                 'Amounts due and paid']},
 'post_incident_analysis': {'root_causes': 'Mistake that exposed personal and '
                                           'financial information'},
 'references': [{'date_accessed': 'September 4, 2023',
                 'source': 'DataBreaches.net'}],
 'title': 'Sunshine Behavioural Health Data Breach',
 'type': 'Data Breach',
 'vulnerability_exploited': 'Mistake that exposed personal and financial '
                            'information'}
Published by
Roshni Ray
Roshni Ray
You might also like
Great! Next, complete checkout for full access to Rankiteo Blog.
Welcome back! You've successfully signed in.
You've successfully subscribed to Rankiteo Blog.
Success! Your account is fully activated, you now have access to all content.
Success! Your billing info has been updated.
Your billing was not updated.