Cyber Incident Victim: Mid-Valley Behavioral Care Networks
Date:
Jun 2019
Location:
United States of America
Summary
The provided incident articles do not contain any information related to 'Mid-Valley Behavioral Care Networks'. No details about cybersecurity incidents, breaches, or impacts involving this specific organization are present in the source material. The articles discuss unrelated healthcare cybersecurity events affecting other entities such as Sonoma Valley Hospital, HCIactive, PharMerica, and the University of Hawaii Cancer Center.
| CIA Posture | Motives | Tactics, Techniques & Procedures |
|---|---|---|
| Available to members | 2 motives | 2 techniques |
| Threat Actors | Type | Location |
|---|---|---|
| 0 actors | Available to members | Available to members |
Description
On June 26, 2019, Mid-Valley Behavioral Care Networks (BCN) discovered a phishing attack that compromised two employee email accounts. The unauthorized access lasted approximately one day before detection. BCN, serving as a care manager for the Willamette Valley Community health plan—a provider for Oregon Health Plan (OHP) beneficiaries—initiated an investigation to determine the scope. The analysis confirmed that the breached accounts contained protected health information of 10,710 Willamette Valley Community health plan members and data belonging to 2,092 OHP providers. Investigators could not definitively establish whether the attacker accessed or exfiltrated the exposed information during the intrusion period.
Following containment, BCN immediately reset all employee email account passwords as a precautionary measure. A review confirmed no additional email accounts were compromised beyond the initial two. The organization implemented unspecified procedural or technical changes aimed at preventing similar incidents. Notifications were issued to all 10,710 affected health plan members regarding the potential exposure of their data. No details were provided regarding specific data elements involved, forensic methodologies used, or attacker attribution. The incident did not disrupt BCN’s operational continuity or care management services for OHP beneficiaries.