University Gastroenterology was targeted by the ransomware attack after an unauthorized individual had gained access to an electronic file storage system, Consultants in Gastroenterology, and encrypted several files.
The compromised information included name, address, date of birth, Social Security number, and medical billing information.” Patients’ electronic medical records were not exposed and remained secure.
Each patient who was impacted by the security situation has received a letter from UGI.
The letter offers free credit monitoring services and details how patients can monitor their personal information.
Source: https://techtalk.pcmatic.com/2016/09/13/ugi-security-incident/
TPRM report: https://scoringcyber.rankiteo.com/company/university-gastroenterology
"id": "uni234621622",
"linkid": "university-gastroenterology",
"type": "Ransomware",
"date": "09/2016",
"severity": "75",
"impact": "2",
"explanation": "Attack limited on finance or reputation"{'affected_entities': [{'industry': 'Healthcare',
'name': 'University Gastroenterology',
'type': 'Medical Facility'}],
'attack_vector': 'Unauthorized access to electronic file storage system',
'data_breach': {'personally_identifiable_information': ['name',
'address',
'date of birth',
'Social Security '
'number'],
'sensitivity_of_data': 'High',
'type_of_data_compromised': ['PII',
'medical billing information']},
'description': 'University Gastroenterology was targeted by the ransomware '
'attack after an unauthorized individual had gained access to '
'an electronic file storage system, Consultants in '
'Gastroenterology, and encrypted several files. The '
'compromised information included name, address, date of '
'birth, Social Security number, and medical billing '
'information. Patients’ electronic medical records were not '
'exposed and remained secure. Each patient who was impacted by '
'the security situation has received a letter from UGI. The '
'letter offers free credit monitoring services and details how '
'patients can monitor their personal information.',
'impact': {'data_compromised': ['name',
'address',
'date of birth',
'Social Security number',
'medical billing information'],
'systems_affected': ['electronic file storage system']},
'initial_access_broker': {'entry_point': 'electronic file storage system'},
'ransomware': {'data_encryption': True},
'response': {'communication_strategy': 'Letters sent to impacted patients '
'offering free credit monitoring '
'services and details on how to '
'monitor personal information'},
'title': 'Ransomware Attack on University Gastroenterology',
'type': 'Ransomware'}