Cyber Incident Victim: Equitas Health

On January 8, 2019, Equitas Health detected unusual activity within an employee’s email account, prompting an internal investigation. The investigation revealed unauthorized access to two enterprise email accounts. Equitas Health engaged a forensics firm alongside legal and cybersecurity experts to assess the breach. By April 15, 2019, the organization confirmed that personal and health information of up to 569 members was potentially compromised. The exposed data included names, dates of birth, medical histories, treatment or diagnosis details, prescription information, medical record numbers, health provider names, health insurance policy numbers, and insurance details. A subset of members also had Social Security numbers and driver’s license numbers affected. The breach period spanned from the initial unauthorized access until Equitas Health secured the accounts, though the exact duration of exposure was not specified. No external threat actor or attack method was identified in the available documentation.

Equitas Health notified all potentially impacted individuals and relevant authorities on April 15, 2019. Remediation included securing the compromised email accounts and offering affected members 12 months of complimentary identity monitoring services. The organization established a dedicated call center (operating weekdays from 9:00 a.m. to 6:30 p.m. Eastern Time) to address inquiries. Notified individuals were advised to review their notification letters for enrollment instructions and additional protective measures. No ransomware, data exfiltration claims, or financial fraud incidents were reported in connection with the breach. The incident did not disrupt Equitas Health’s clinical operations or broader IT infrastructure beyond the two email accounts.