Breach, Data Security, Network Security, Threat Management

Banner Health data breach impacts 3.7 million

Share

Phoenix-based Banner Health is notifying patients of a cyberattack that compromised patient records.

How many victims? 3.7 million potential victims

What type of information? Names, birthdates, address, physician names, dates of service, clinical information, possibly health insurance information, and Social Security numbers were all compromised in the breach.

What happened?  On June 17, attackers gained unauthorized access to information stored on an unspecified number of Banner Health computer servers after an attack was initiated.

What was the response? On July 13, administrators learned of the incident and launched an investigation, hired a forensics firm, took steps to block the attacks and contacted law enforcement.

Quote: “According to our information, the incident may be related to the same group that previously attacked several U.S.-based healthcare institutions (in March/April 2016). As of today [Aug. 4], the stolen data is not available for sale in the underground,” Andrew Komarov, chief intelligence officer at InfoArmor, told SCMagazine.com via emailed comments.

Source: Data Breach notification letter/Andrew Komarov, chief intelligence officer, InfoArmor

An In-Depth Guide to Network Security

Get essential knowledge and practical strategies to fortify your network security.

Related

Over 21K Equinox patients, staff impacted by LockBit-claimed attack

Threat actors who infiltrated Equinox's systems on Apr. 29 were able to exfiltrate digital files containing individuals' names, birthdates, addresses, Social Security numbers, passport numbers, driver's license or other government identification numbers, health insurance information, financial account details, treatment and diagnosis data, and/or medication details.

Alleged Finastra breach under investigation

Infiltration of Finastra's internally hosted file transfer platform, which was only discovered earlier this month, was likely conducted through stolen credentials and has resulted in the exfiltration of customer information.

Email breach hits Library of Congress

While email correspondences between the Congressional Research Service and other Library staff and certain congressional offices between January and September had been compromised, such an intrusion — which was initially reported by NBC News — did not affect the House and Senate's IT networks and respective email accounts.

Related Terms

Covert ChannelsCrossover CableCryptographic Algorithm or HashCryptographic Hash FunctionsDarknetData MiningDatagramDecryptionDeepfakeDemilitarized Zone (DMZ)

Get daily email updates

SC Media's daily must-read of the most current and pressing daily news

By clicking the Subscribe button below, you agree to SC Media Terms of Use and Privacy Policy.