Baptist Health Louisville notifies 880 patients after phishing incident

Baptist Health Louisville in Kentucky recently notified 880 patients of a phishing incident. The incident was also reported to the U.S. Department of Health and Human Services.
全民网络安全意识教育策略与资源
According to a substitute notice in response to the breach, on October 3, Baptist Health discovered that an employee’s email account credentials were obtained by an unauthorized third-party on October 2, and had been used to generate “phishing” emails to other email accounts.

Baptist Health immediately disabled the email accounts, changed the account passwords, and conducted a thorough investigation that could not rule out that an unauthorized third-party may have viewed the employee’s emails. Baptist Health then conducted a review of the affected employee’s email accounts and confirmed that some of the emails contained patient information, and may have included patients’ names, dates of birth, medical record numbers, treatment and/or clinical information, and in some instances Social Security numbers.
Although Baptist Health states there is currently no reason to believe that patient information has been used improperly, they began mailing letters to affected patients on November 21, 2017, and established a dedicated call center to answer any questions patients may have regarding the incident.
下载手机游戏要小心,要到可信的站点下载。不管是通过PC还是WIFI、3G等下载,都记得要先查杀一下病毒。
Patients whose Social Security numbers were potentially involved are being offered a one- year complimentary credit monitoring and identity protection service.
In response to the incident, Baptist Health notes that they are reinforcing education with their staff regarding “phishing” emails and they have strengthened the log-in process for remote email access.
被动的响应技术往往会慢于精明的黑客,所以不能一味依赖通过技术手段来实现控管目标,提高员工们的安全防范意识,让他们能主动识别出新型的安全威胁,才是更重要的啊。

猜您喜欢

01:4101:41信息安全意识培训卡通
员工的安全意识是商业成功的竞争力
网络安全法宣传视频系列001《网络安全法》背景知识
司机开车打瞌睡 30万盒牛奶散高速
MKEEPER CUZETAPSI
安全基础理论课程助力培养全民网络安全意识