https://www.databreaches.net/287652-south-denver-cardiology-associates-patients-notified-of-breach/
Exploit: Hacking
South Denver Cardiology Associates: Medical Clinic
Risk to Business: 2.214 = Severe
South Denver Cardiology Associates apparently kicked off 2022 with a data breach that they’ve just disclosed to their patients on their website. The medical practice believes that an unauthorized party gained access to its systems between January 2, 2022, and January 5, 2022. During that time, certain files stored on the system were accessed that contained the protected health information of patients. They were careful to note that there was no impact to the contents of patient medical records and no unauthorized access to the patient portal.
Individual Rist: 2.371 = Severe
Information potentially exposed includes names, dates of birth, Social Security numbers and/or drivers’ license numbers, patient account numbers, health insurance information, and clinical information, such as physician names, dates/types of service and diagnoses. South Denver Cardiology Associates is offering credit monitoring to impacted patients who have been informed by mail.
How How It Could Affect Your Customers’ Business: This incident could end up being very expensive even if no real damage was done to the practice after regulators get finished with them.
Risk Levels:
1 - 1.5 = Extreme Risk
1.51 - 2.49 = Severe Risk
2.5 - 3 = Moderate Risk
*The risk score is calculated using a formula that considers a wide range of factors related to the assessed breach.
