cyber Breach

Valley Regional Hospital

May 11, 2023 1 min read
Valley Regional Hospital

Nova Scotia Health suffered a data breach which impacted Valley Regional Hospital.

It also affected Aberdeen Hospital in New Glasgow.

It affected more than 200 people.

The province's health authority was contacting 211 people by letter whose personal health information was inappropriately accessed in two unrelated incidents.

A clerk accessed Meditech systems for both scheduling and patient records.

Source: https://www.cbc.ca/news/canada/nova-scotia/nova-scotia-health-privacy-breaches-200-people-1.5673578

TPRM report: https://scoringcyber.rankiteo.com/company/valley-regional-hospital

"id": "val20418123",
"linkid": "valley-regional-hospital",
"type": "Breach",
"date": "08/2020",
"severity": "60",
"impact": "3",
"explanation": "Attack with significant impact with internal employee data leaks"
{'affected_entities': [{'customers_affected': 211,
                        'industry': 'Healthcare',
                        'location': 'Nova Scotia, Canada',
                        'name': 'Nova Scotia Health',
                        'type': 'Health Authority'},
                       {'industry': 'Healthcare',
                        'location': 'Nova Scotia, Canada',
                        'name': 'Valley Regional Hospital',
                        'type': 'Hospital'},
                       {'industry': 'Healthcare',
                        'location': 'New Glasgow, Nova Scotia, Canada',
                        'name': 'Aberdeen Hospital',
                        'type': 'Hospital'}],
 'attack_vector': 'Unauthorized Access',
 'data_breach': {'number_of_records_exposed': 211,
                 'personally_identifiable_information': True,
                 'sensitivity_of_data': 'High',
                 'type_of_data_compromised': 'Personal Health Information'},
 'description': 'Nova Scotia Health suffered a data breach which impacted '
                'Valley Regional Hospital and Aberdeen Hospital in New '
                "Glasgow, affecting more than 200 people. The province's "
                'health authority was contacting 211 people by letter whose '
                'personal health information was inappropriately accessed in '
                'two unrelated incidents. A clerk accessed Meditech systems '
                'for both scheduling and patient records.',
 'impact': {'data_compromised': True,
            'identity_theft_risk': True,
            'systems_affected': ['Meditech Systems']},
 'response': {'communication_strategy': 'Contacting affected individuals by '
                                        'letter'},
 'threat_actor': 'Internal Clerk',
 'title': 'Data Breach at Nova Scotia Health',
 'type': 'Data Breach',
 'vulnerability_exploited': 'Improper Access Controls'}
Published by
Jeremy C
Jeremy C
You might also like
Great! Next, complete checkout for full access to Rankiteo Blog.
Welcome back! You've successfully signed in.
You've successfully subscribed to Rankiteo Blog.
Success! Your account is fully activated, you now have access to all content.
Success! Your billing info has been updated.
Your billing was not updated.