Cyber Incident Victim: Medstar Mobile Healthcare
Date:
Dec 2022
Location:
United States of America
Summary
Medstar Mobile Healthcare experienced a hacking incident targeting its network servers, resulting in unauthorized access to protected health information of approximately 612,000 individuals. The ambulance service provider, operating across 15 cities in Tarrant County, notified affected parties and federal regulators after confirming the breach, which exposed sensitive patient data potentially usable for identity theft and fraud. The compromised information stemmed from a healthcare-focused cyberattack exploiting system vulnerabilities, though specific technical details remain undisclosed.
| CIA Posture | Motives | Tactics, Techniques & Procedures |
|---|---|---|
| Available to members | 1 motive | 1 technique |
| Threat Actors | Type | Location |
|---|---|---|
| 0 actors | Available to members | Available to members |
Description
On December 19, 2022, Medstar Mobile Healthcare, operating as the Metropolitan Area EMS Authority, filed a data breach notice with the U.S. Department of Health and Human Services Office for Civil Rights following a confirmed hacking incident targeting its computer systems. The breach involved unauthorized access to the company's network servers through a hacking/IT incident, compromising protected health information belonging to patients. Medstar initiated a review of affected files upon discovering the exposure of sensitive consumer data to determine the scope of compromised information and identify impacted individuals. The company formally notified 612,000 affected individuals across the United States through data breach letters on the same date as its regulatory filing. The incident was classified under the HHS-OCR breach portal as involving protected health information, though Medstar did not publicly disclose technical details regarding the attack vector, intrusion timeline, or specific systems compromised beyond confirming network server involvement. No evidence of data misuse was cited in available reports at the time of notification.
The compromised data included confidential patient information typically maintained by healthcare providers, though specific data elements were not enumerated in the HHS-OCR filing or accompanying public notices. Medstar Mobile Healthcare, serving 15 municipalities in Tarrant County, Texas, provided emergency medical services to over 1.1 million residents across 436 square miles prior to the breach. The organization handled more than 185,000 annual service requests with 460 employees and $67 million in revenue. Potential consequences of the breach included risks of healthcare identity theft and fraud due to exposure of protected health information, with legal analysts noting possible negligence claims against Medstar pending investigation outcomes. The company did not disclose remediation steps taken beyond breach notification letters, nor did it publish supplemental incident details on its corporate website beyond the required regulatory submission.