• Home
  • Breach
  • University of Washington Medical Center
Breach cyber

University of Washington Medical Center

Dec 1, 2018 1 min read
University of Washington Medical Center

The California Office of the Attorney General reported a data breach involving the University of Washington Medical Center (UWM) on February 20, 2019. The breach, which occurred due to an error in database configuration, potentially exposed protected health information (PHI) including names and medical record numbers but did not include sensitive data such as medical records, financial information, or Social Security numbers.

Source: https://oag.ca.gov/ecrime/databreach/reports/sb24-144877

TPRM report: https://www.rankiteo.com/company/university-of-washington-medical-center

"id": "uni553072525",
"linkid": "university-of-washington-medical-center",
"type": "Breach",
"date": "12/2018",
"severity": "25",
"impact": "1",
"explanation": "Attack without any consequences"
{'affected_entities': [{'industry': 'Healthcare',
                        'location': 'Washington',
                        'name': 'University of Washington Medical Center',
                        'type': 'Healthcare'}],
 'attack_vector': 'Database Misconfiguration',
 'data_breach': {'personally_identifiable_information': ['Names',
                                                         'Medical Record '
                                                         'Numbers'],
                 'sensitivity_of_data': 'Medium',
                 'type_of_data_compromised': ['Names',
                                              'Medical Record Numbers']},
 'date_detected': '2019-02-20',
 'date_publicly_disclosed': '2019-02-20',
 'description': 'The California Office of the Attorney General reported a data '
                'breach involving the University of Washington Medical Center '
                '(UWM) on February 20, 2019. The breach, which occurred due to '
                'an error in database configuration, potentially exposed '
                'protected health information (PHI) including names and '
                'medical record numbers but did not include sensitive data '
                'such as medical records, financial information, or Social '
                'Security numbers.',
 'impact': {'data_compromised': ['Names', 'Medical Record Numbers']},
 'post_incident_analysis': {'root_causes': 'Database Configuration Error'},
 'references': [{'date_accessed': '2019-02-20',
                 'source': 'California Office of the Attorney General'}],
 'title': 'Data Breach at University of Washington Medical Center',
 'type': 'Data Breach',
 'vulnerability_exploited': 'Database Configuration Error'}
Published by
Jeremy C
Jeremy C
You might also like
Great! Next, complete checkout for full access to Rankiteo Blog.
Welcome back! You've successfully signed in.
You've successfully subscribed to Rankiteo Blog.
Success! Your account is fully activated, you now have access to all content.
Success! Your billing info has been updated.
Your billing was not updated.