Valley Professionals Health Care became victim of a data breach that affected all seven of its health care locations, including their mobile site.
The information of more than 12 000 patients may have been at risk, but it is now thought that it was actually a phishing email.
An employee first became aware of it when, in late November, they thought they received an email from a different healthcare business they had previously worked with.
There is a 90% possibility that it was a phishing email from a different coworker at a different medical facility.
Source: https://www.databreaches.net/in-thousands-of-patients-information-compromised-in-data-breach/
TPRM report: https://scoringcyber.rankiteo.com/company/valley-professionals-community-health-center
"id": "val75122223",
"linkid": "valley-professionals-community-health-center",
"type": "Breach",
"date": "02/2019",
"severity": "60",
"impact": "3",
"explanation": "Attack with significant impact with internal employee data leaks"
{'affected_entities': [{'customers_affected': '12,000 Patients',
'industry': 'Healthcare',
'name': 'Valley Professionals Health Care',
'size': 'Seven Locations',
'type': 'Healthcare Provider'}],
'attack_vector': 'Phishing Email',
'data_breach': {'number_of_records_exposed': '12,000',
'type_of_data_compromised': 'Patient Information'},
'date_detected': 'Late November',
'description': 'Valley Professionals Health Care experienced a data breach '
'affecting all seven of its healthcare locations, including '
"their mobile site. Over 12,000 patients' information may have "
'been compromised due to a suspected phishing email.',
'impact': {'data_compromised': ['Patient Information'],
'systems_affected': ['Healthcare Locations', 'Mobile Site']},
'initial_access_broker': {'entry_point': 'Phishing Email'},
'motivation': ['Data Theft'],
'post_incident_analysis': {'root_causes': 'Phishing Email'},
'title': 'Data Breach at Valley Professionals Health Care',
'type': 'Data Breach',
'vulnerability_exploited': 'Social Engineering'}