cyber Breach

Tandem Diabetes Care

May 11, 2023 1 min read
Tandem Diabetes Care

Tandem Diabetes Care, Inc. experienced a security incident which involved five Tandem employee email accounts.

An unauthorized user gained access to an employee’s email account through a “phishing” incident.

A limited number of Company employee email accounts had been accessed by the unauthorized user between January 17, 2020, and January 20, 2020.

Some customer information was contained within these email accounts, including customer contact information, information related to the use of Tandem’s products or services, and/or clinical data regarding customer diabetes therapy, and in some very limited instances, customer Social Security numbers.

Source: https://www.businesswire.com/news/home/20200316005740/en/Tandem-Diabetes-Care-Announces-Security-Incident-Employee

TPRM report: https://scoringcyber.rankiteo.com/company/tandemdiabetes

"id": "tan230221222",
"linkid": "tandemdiabetes",
"type": "Data Leak",
"date": "01/2020",
"severity": "60",
"impact": "3",
"explanation": "Attack with significant impact with internal employee data leaks"
{'affected_entities': [{'industry': 'Healthcare',
                        'name': 'Tandem Diabetes Care, Inc.',
                        'type': 'Company'}],
 'attack_vector': 'Email',
 'data_breach': {'personally_identifiable_information': 'Yes',
                 'sensitivity_of_data': 'High',
                 'type_of_data_compromised': ['customer contact information',
                                              'product usage information',
                                              'clinical data regarding '
                                              'diabetes therapy',
                                              'Social Security numbers']},
 'date_detected': '2020-01-20',
 'description': 'Tandem Diabetes Care, Inc. experienced a security incident '
                'involving five Tandem employee email accounts. An '
                'unauthorized user gained access through a phishing incident. '
                'The breach occurred between January 17, 2020, and January 20, '
                '2020. Some customer information was contained within these '
                'email accounts, including contact information, product usage '
                'information, clinical data regarding diabetes therapy, and in '
                'some limited instances, Social Security numbers.',
 'impact': {'data_compromised': ['customer contact information',
                                 'product usage information',
                                 'clinical data regarding diabetes therapy',
                                 'Social Security numbers'],
            'systems_affected': ['Employee email accounts']},
 'initial_access_broker': {'entry_point': 'Phishing email'},
 'post_incident_analysis': {'root_causes': 'Phishing attack'},
 'threat_actor': 'Unauthorized user',
 'title': 'Tandem Diabetes Care Email Account Breach',
 'type': 'Phishing',
 'vulnerability_exploited': 'Phishing'}
Published by
Jeremy C
Jeremy C
You might also like
Great! Next, complete checkout for full access to Rankiteo Blog.
Welcome back! You've successfully signed in.
You've successfully subscribed to Rankiteo Blog.
Success! Your account is fully activated, you now have access to all content.
Success! Your billing info has been updated.
Your billing was not updated.