Hackers phish their way into Fraser employee’s email

Exploit: Unauthorized database access
Wisconsin Diagnostic Laboratories: Provider of education, housing, and healthcare services for children and adults with special needs

Risk to Small Business: 1.555 = Severe: A phishing scam successfully compromised an employee email account, giving hackers access to a spreadsheet containing information from the Fraser waitlist. In response, Fraser contacted a third-party IT vendor within hours of discovering the breach and was able to secure its network. Needless to say, a reactive response will not mitigate the damage inflicted on those impacted by the breach. Fraser will likely face intense regulatory scrutiny in the near future, as the information accessed is considered protected health information.

Individual Risk: 1.555 = Severe: The data breach did not reveal customers Social Security numbers or credit card information, but plenty of personally identifiable information was made available to hackers. This includes customers’ names, Fraser ID numbers, zip codes, and treatment notes. Affected individuals should carefully monitor their accounts for suspicious activity and consider contacting the hotline that Fraser recently opened up.

Customers Impacted: Unknown
How it Could Affect Your Customers’ Business: Despite a company’s best efforts, some phishing scams inevitably make their way to employees’ inboxes. Since a single click can compromise incredible amounts of sensitive data, businesses of all sizes must prioritize the awareness training that can render such attacks useless. With the cost of a data breach continually increasing, addressing this vulnerability can be one of your company’s best investments.

Risk Levels:

1 - 1.5 = Extreme Risk
1.51 - 2.49 = Severe Risk
2.5 - 3 = Moderate Risk

*The risk score is calculated using a formula that considers a wide range of factors related to the assessed breach.