cyber Breach

UAB Medicine

May 11, 2023 1 min read
UAB Medicine

Hackers gained access to some UAB Medicine employee email accounts exposing the protected health information of 20,000 patients.

UAB Medicine notified the affected patients that their information could have potentially been seen by the hackers.

The information that hackers may have seen could include the patient's name along with one or more of the following pieces of information: medical record number, birth date, dates of service, location of service, diagnosis and treatment information.

The hackers sent an email designed to look like an authentic business survey from an executive.

Source: https://patch.com/alabama/birmingham-al/uab-data-breach-exposes-information-thousands-patients

TPRM report: https://scoringcyber.rankiteo.com/company/uab-medicine

"id": "uab71515423",
"linkid": "uab-medicine",
"type": "Breach",
"date": "10/2019",
"severity": "60",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"
{'affected_entities': [{'customers_affected': 20000,
                        'industry': 'Healthcare',
                        'name': 'UAB Medicine',
                        'type': 'Healthcare Provider'}],
 'attack_vector': 'Phishing',
 'customer_advisories': 'Notified affected patients that their information '
                        'could have potentially been seen by the hackers.',
 'data_breach': {'number_of_records_exposed': 20000,
                 'personally_identifiable_information': True,
                 'sensitivity_of_data': 'High',
                 'type_of_data_compromised': ['Patient Name',
                                              'Medical Record Number',
                                              'Birth Date',
                                              'Dates of Service',
                                              'Location of Service',
                                              'Diagnosis and Treatment '
                                              'Information']},
 'description': 'Hackers gained access to some UAB Medicine employee email '
                'accounts exposing the protected health information of 20,000 '
                'patients.',
 'impact': {'data_compromised': ['Protected Health Information'],
            'systems_affected': ['Email Accounts']},
 'initial_access_broker': {'entry_point': 'Email'},
 'response': {'communication_strategy': 'Notified affected patients'},
 'threat_actor': 'Unknown Hackers',
 'title': 'UAB Medicine Email Account Breach',
 'type': 'Data Breach',
 'vulnerability_exploited': 'Human'}
Published by
Roshni Ray
Roshni Ray
You might also like
Great! Next, complete checkout for full access to Rankiteo Blog.
Welcome back! You've successfully signed in.
You've successfully subscribed to Rankiteo Blog.
Success! Your account is fully activated, you now have access to all content.
Success! Your billing info has been updated.
Your billing was not updated.