• Home
  • cyber
  • University of Wisconsin Hospital and Clinics
cyber Breach

University of Wisconsin Hospital and Clinics

May 11, 2023 1 min read
University of Wisconsin Hospital and Clinics

UW Health suffered from a data breach incident after an employee's email account was used by an unauthorized user that exposed 2,036 patients information.

The compromised information includes patients’ names; addresses; dates of birth; dates of service; providers’ names; reason for visit; medical history and conditions, medications; diagnostic results and/or social history.

They said medical records, Social Security numbers, credit card numbers, health insurance numbers, or other financial information were not exposed.

UW Health immediately took action and disabled the account and password.

Source: https://www.wbay.com/content/news/UW-Health-information-on-2036-patients-compromised-424454484.html

TPRM report: https://scoringcyber.rankiteo.com/company/university-of-wisconsin-hospital-and-clinics

"id": "uni183423922",
"linkid": "university-of-wisconsin-hospital-and-clinics",
"type": "Data Leak",
"date": "05/2017",
"severity": "50",
"impact": "1",
"explanation": "Attack without any consequences"
{'affected_entities': [{'customers_affected': 2036,
                        'industry': 'Healthcare',
                        'name': 'UW Health',
                        'type': 'Healthcare Provider'}],
 'attack_vector': 'Email Account Compromise',
 'data_breach': {'number_of_records_exposed': 2036,
                 'personally_identifiable_information': True,
                 'sensitivity_of_data': 'High',
                 'type_of_data_compromised': ['Patients’ names',
                                              'Addresses',
                                              'Dates of birth',
                                              'Dates of service',
                                              'Providers’ names',
                                              'Reason for visit',
                                              'Medical history and conditions',
                                              'Medications',
                                              'Diagnostic results',
                                              'Social history']},
 'description': 'UW Health suffered from a data breach incident after an '
                "employee's email account was used by an unauthorized user "
                'that exposed 2,036 patients information.',
 'impact': {'data_compromised': ['Patients’ names',
                                 'Addresses',
                                 'Dates of birth',
                                 'Dates of service',
                                 'Providers’ names',
                                 'Reason for visit',
                                 'Medical history and conditions',
                                 'Medications',
                                 'Diagnostic results',
                                 'Social history'],
            'systems_affected': 'Employee Email Account'},
 'initial_access_broker': {'entry_point': 'Compromised Email Account'},
 'response': {'containment_measures': 'Disabled the compromised email account '
                                      'and password'},
 'threat_actor': 'Unauthorized User',
 'title': 'UW Health Data Breach',
 'type': 'Data Breach',
 'vulnerability_exploited': 'Unauthorized Access to Email Account'}
Published by
Roshni Ray
Roshni Ray
You might also like
Great! Next, complete checkout for full access to Rankiteo Blog.
Welcome back! You've successfully signed in.
You've successfully subscribed to Rankiteo Blog.
Success! Your account is fully activated, you now have access to all content.
Success! Your billing info has been updated.
Your billing was not updated.