Covenant Care informed HHS on May 6, 2022, on behalf of Wagner Heights Nursing and Rehabilitation Centre, that 23,093 patients had been impacted by a phishing event that occurred in February 2022.
Names, addresses, dates of birth, Social Security numbers, financial and claim information, prescription drug lists, diagnosis, and other treatment-related data were among the PHI in question.
The CE provided complimentary credit monitoring services and implemented additional administrative, technical, and security safeguards," according to the HHS closing statement. Email security was retaught to staff members.
TPRM report: https://scoringcyber.rankiteo.com/company/wagner-heights-nursing-&-rehabilitation-center
"id": "wag50141223",
"linkid": "wagner-heights-nursing-&-rehabilitation-center",
"type": "Data Leak",
"date": "05/2022",
"severity": "60",
"impact": "3",
"explanation": "Attack with significant impact with internal employee data leaks"
{'affected_entities': [{'customers_affected': 23093,
'industry': 'Healthcare',
'name': 'Wagner Heights Nursing and Rehabilitation '
'Centre',
'type': 'Healthcare'}],
'attack_vector': 'Email',
'data_breach': {'number_of_records_exposed': 23093,
'personally_identifiable_information': 'Yes',
'sensitivity_of_data': 'High',
'type_of_data_compromised': ['Names',
'Addresses',
'Dates of birth',
'Social Security numbers',
'Financial and claim information',
'Prescription drug lists',
'Diagnosis',
'Other treatment-related data']},
'date_detected': 'February 2022',
'date_publicly_disclosed': 'May 6, 2022',
'description': 'Covenant Care informed HHS on May 6, 2022, on behalf of '
'Wagner Heights Nursing and Rehabilitation Centre, that 23,093 '
'patients had been impacted by a phishing event that occurred '
'in February 2022. Names, addresses, dates of birth, Social '
'Security numbers, financial and claim information, '
'prescription drug lists, diagnosis, and other '
'treatment-related data were among the PHI in question. The CE '
'provided complimentary credit monitoring services and '
'implemented additional administrative, technical, and '
'security safeguards. Email security was retaught to staff '
'members.',
'impact': {'data_compromised': ['Names',
'Addresses',
'Dates of birth',
'Social Security numbers',
'Financial and claim information',
'Prescription drug lists',
'Diagnosis',
'Other treatment-related data']},
'regulatory_compliance': {'regulatory_notifications': ['HHS notification']},
'response': {'remediation_measures': ['Complimentary credit monitoring '
'services',
'Additional administrative, technical, '
'and security safeguards',
'Email security retraining to staff '
'members']},
'title': 'Data Breach at Wagner Heights Nursing and Rehabilitation Centre',
'type': 'Phishing',
'vulnerability_exploited': 'Human vulnerability (phishing)'}