Terros Health Phishing Attack Affects up to 1,600 Patients

June 16, 2018


A staff member at Phoenix-situated Terros Health was deceived by a phishing trick and erroneously handed over login identifications to the hacker. That individual retrieved the worker’s electronic mail account and might have seen or obtained a variety of PHI recorded in separate electronic mails in the account. The breach was limited to a single electronic mail account and access to other systems was not gained.

Terros Health found the phishing attack on April 12, 2018, and warned the mass media on June 8. All patients affected by the breach have now been made conscious by post.

An examination into the attack disclosed the staff member replied to the phishing electronic mail on or around November 16, 2017, which was when the electronic mail account was first logged onto by the attacker.

Although up to 1,600 patients might have had some of their PHI undermined because of the attack, for the bulk of patients (1,241) the disclosed data was restricted to names and dates of birth. The remaining patients also had their addresses, medical history numbers, diagnoses, email addresses, and other protected health information retrieved. 142 patients’ Social Security numbers were also present in the undermined electronic mail account and might possibly have been seen or downloaded. Most patients impacted by the breach had earlier received medical facilities at its 23rd/Dunlap Avenue medical center.

Patients whose Social Security number was gotten have been provided credit checking and identity theft protection facilities for 1 year for free.

Prior to the attack, Terros Health had put in place safety measures to avoid the illegal retrieving of PHI, even though the phishing attack prevented those controls. Extra steps have now been taken to improve safety, policies and procedures have been reinforced, and more safety consciousness training is being provided to workers.

The business said this was the largest data breach it has faced so far.