"Revere Health Data Breach Impacts Cardiology Patients"

The Personal Identifiable Information (PII) of approximately 12,000 cardiology patients has been exposed in a cyberattack on a healthcare provider based in Utah.  Researchers found that patient data in the care of Revere Health was compromised when the organization fell victim to a phishing attack on June 21, 2021.  An adversary impersonating the US Agency for International Development (USAID) sent an email to a Revere Health employee that contained a malicious link. When the employee clicked the link, they inadvertently gave the threat actor access to their login credentials.  The adversary used the stolen credentials to log in to an employee email account that contained information belonging to patients of Revere Health's Heart of Dixie Cardiology Department in St. George, Utah. No credit card or payment information was among the data accessed by the adversary.  Revere Health said that the compromised data was limited to patient names, dates of birth, medical record numbers, provider names, procedures, and information about appointments in a patient notification statement.  Revere Health said that active monitoring by its IT security team detected the unauthorized activity quickly. Within 45 minutes of the attack's commencing, the team was able to sever unauthorized access to the compromised email account.   An investigation into the incident led Revere Health to conclude that stealing patient data was not the assailant's primary intention. The security logs suggest that the attacker had three objectives: to spread phishing emails, gather active usernames and passwords, and attempt financial fraud against Revere Health.

Infosecurity reports: "Revere Health Data Breach Impacts Cardiology Patients"