Cyber Incident Victim: New London Hospital
Date:
Jul 2020
Location:
United States of America
Summary
New London Hospital notifies 34,878 patients that an unauthorized party gained access to a file on the hospitals network in a targeted cyberattack.
| CIA Posture | Motives | Tactics, Techniques & Procedures |
|---|---|---|
| Available to members | 0 motives | 1 technique |
| Threat Actors | Type | Location |
|---|---|---|
| 0 actors | Available to members | Available to members |
Description
Incident Report: New London Hospital Data Breach - July 30, 2020
On July 30, 2020, New London Hospital reported a data breach that affected approximately 34,000 individuals. The incident involved the exfiltration of data from an application server. The breach exposed sensitive information, necessitating immediate action and notification to affected parties.
1. Date of Attack: The data breach was reported on July 30, 2020.
2. Technique Used: The attackers used a data exfiltration technique to compromise an application server within New London Hospital's information technology infrastructure.
3. Number of Affected Individuals: The breach impacted approximately 34,000 individuals, raising concerns about the exposure of sensitive personal and health-related data.
4. Data Compromised: The breach exposed a range of sensitive information. This included personal data such as names, addresses, dates of birth, and contact information, which are crucial for identifying and contacting affected individuals. In addition, health-related information, such as medical records and treatment details, was potentially at risk.
5. Nature of Exfiltration: The breach involved unauthorized access to the hospital's systems and exfiltration of sensitive data. The method used by the threat actors to exfiltrate the data was not specified in the available information.
6. Immediate Response: Upon discovering the breach, New London Hospital took immediate action to mitigate the impact and secure its systems. Response measures included conducting a thorough investigation to determine the extent of the breach and the specific data exposed.
7. Notification to Affected Individuals: In compliance with data breach notification regulations, the hospital initiated the process of notifying affected individuals. Notifications were sent to the 34,000 individuals who were potentially affected by the breach. These notifications were essential to inform individuals about the incident and its potential impact on their personal and health-related data.
8. Protection of Affected Individuals: To support individuals affected by the breach, New London Hospital offered complementary credit monitoring services. This measure aimed to help affected individuals monitor their credit reports for any suspicious activities and provide an additional layer of security against identity theft and fraud.
9. Transparency and Accountability: The hospital demonstrated transparency by disclosing the breach and taking accountability for the security incident. The prompt notification of affected individuals and the provision of identity theft protection services illustrated the hospital's commitment to addressing the incident responsibly.
The data breach at New London Hospital serves as a reminder of the persistent and evolving cybersecurity threats faced by the healthcare sector. Healthcare institutions handle vast amounts of sensitive and valuable data, making them prime targets for cyberattacks. The incident highlights several important aspects of data breaches in the healthcare industry:
1. Data Sensitivity: Healthcare data includes highly sensitive personal and medical information. Breaches involving this type of data can have severe consequences for individuals, including identity theft and financial fraud. Healthcare organizations must prioritize robust security measures to protect this data adequately.
2. Exfiltration Techniques: While the specific exfiltration technique used in the breach was not detailed, it emphasizes the importance of monitoring and defending against a range of cyber threats, from ransomware to data exfiltration. Hospitals and healthcare organizations should have multi-layered security measures in place to protect against these threats.
3. Immediate Response: New London Hospital's quick response to mitigate the breach and secure its systems is commendable. The healthcare industry must prioritize rapid response measures to minimize the potential harm caused by data breaches.
4. Notification and Protection: The hospital's commitment to notifying affected individuals and offering credit monitoring services aligns with best practices for data breach response. Transparent and accountable communication with affected parties is vital to rebuild trust and protect those impacted by the breach.
5. Regulatory Compliance: Healthcare organizations must adhere to data breach notification requirements, as mandated by regulations such as the Health Insurance Portability and Accountability Act (HIPAA). Compliance is essential to avoid potential legal and financial consequences.
In summary, the data breach at New London Hospital highlights the critical need for robust cybersecurity measures within the healthcare sector. The breach serves as a cautionary example of the potential risks associated with handling sensitive patient data and reinforces the importance of immediate response and transparent communication in the event of a data breach.