ZOLL discovered that some emails archived by an unnamed third-party service provider had been exposed during a server migration.
At this point, the company is not aware of any fraud or identity theft to any individual as a result of this exposure.
The compromised information includes patient names, addresses, dates of birth, and limited medical information.
A small percentage of patients also had Social Security numbers exposed.
ZOLL offered free credit and identity monitoring services for one year to impacted patients where available.
Source: https://www.databreaches.net/zoll-notifying-277319-patients-of-vendor-data-exposure-incident/
TPRM report: https://scoringcyber.rankiteo.com/company/zoll-medical-corporation
"id": "zol7412323",
"linkid": "zoll-medical-corporation",
"type": "Data Leak",
"date": "03/2019",
"severity": "50",
"impact": "2",
"explanation": "Attack limited on finance or reputation"
{'affected_entities': [{'industry': 'Healthcare',
'name': 'ZOLL',
'type': 'Company'}],
'attack_vector': 'Server Migration',
'data_breach': {'personally_identifiable_information': ['patient names',
'addresses',
'dates of birth',
'social security '
'numbers'],
'sensitivity_of_data': 'High',
'type_of_data_compromised': ['patient names',
'addresses',
'dates of birth',
'limited medical information',
'social security numbers']},
'description': 'ZOLL discovered that some emails archived by an unnamed '
'third-party service provider had been exposed during a server '
'migration.',
'impact': {'data_compromised': ['patient names',
'addresses',
'dates of birth',
'limited medical information',
'social security numbers']},
'title': 'ZOLL Data Exposure Incident',
'type': 'Data Exposure',
'vulnerability_exploited': 'Improper Data Handling'}