• Home
  • cyber
  • University Hospitals Elyria Medical Center
cyber Breach

University Hospitals Elyria Medical Center

May 11, 2023 1 min read
University Hospitals Elyria Medical Center

University Hospitals Elyria Medical Center experienced a data breach incident after an employee improperly accessed the personal and medical information of nearly 300 patients.

The employee had accessed the hospital’s electronic medical record system outside the worker’s normal duties.

The accessed information included the names, dates of birth, medical record numbers, dates of service and diagnostic and treatment information.

Source: https://www.databreaches.net/oh-elyria-hospital-patients-records-improperly-accessed-by-worker/

TPRM report: https://scoringcyber.rankiteo.com/company/emh-regional-medical-center

"id": "uni232821123",
"linkid": "emh-regional-medical-center",
"type": "Breach",
"date": "07/2015",
"severity": "60",
"impact": "3",
"explanation": "Attack with significant impact with internal employee data leaks"
{'affected_entities': [{'customers_affected': 'Nearly 300 patients',
                        'industry': 'Healthcare',
                        'location': 'Elyria, Ohio',
                        'name': 'University Hospitals Elyria Medical Center',
                        'type': 'Hospital'}],
 'attack_vector': 'Insider Threat',
 'data_breach': {'number_of_records_exposed': 'Nearly 300',
                 'personally_identifiable_information': ['Names',
                                                         'Dates of Birth',
                                                         'Medical Record '
                                                         'Numbers'],
                 'sensitivity_of_data': 'High',
                 'type_of_data_compromised': ['Names',
                                              'Dates of Birth',
                                              'Medical Record Numbers',
                                              'Dates of Service',
                                              'Diagnostic and Treatment '
                                              'Information']},
 'description': 'University Hospitals Elyria Medical Center experienced a data '
                'breach incident after an employee improperly accessed the '
                'personal and medical information of nearly 300 patients. The '
                'employee had accessed the hospital’s electronic medical '
                'record system outside the worker’s normal duties. The '
                'accessed information included the names, dates of birth, '
                'medical record numbers, dates of service and diagnostic and '
                'treatment information.',
 'impact': {'data_compromised': ['Names',
                                 'Dates of Birth',
                                 'Medical Record Numbers',
                                 'Dates of Service',
                                 'Diagnostic and Treatment Information']},
 'threat_actor': 'Employee',
 'title': 'Data Breach at University Hospitals Elyria Medical Center',
 'type': 'Data Breach',
 'vulnerability_exploited': 'Improper Access Controls'}
Published by
Harshit Kaur Bhatia
Harshit Kaur Bhatia
You might also like
Great! Next, complete checkout for full access to Rankiteo Blog.
Welcome back! You've successfully signed in.
You've successfully subscribed to Rankiteo Blog.
Success! Your account is fully activated, you now have access to all content.
Success! Your billing info has been updated.
Your billing was not updated.