The attackers gained access to personal data ranging from claims information to laboratory results, prescriptions, treatments, SSNs, payment card numbers or financial account information.
UC San Diego Health released a notice this week announcing that they suffered a breach that gave cyberattackers widespread access to information about patients, students and employees. UC San Diego Health’s executive director of communications and media relations Jacqueline Carr confirmed to ZDNet that the breach resulted from a phishing attack. From December 2,2020 to April 8, 2021, hackers had access to data including names, addresses, claims information, laboratory results, medical diagnosis and conditions, Medical Record Numbers and other medical identifiers, prescription information, treatment information, medical information, Social Security numbers, government identification numbers, payment card numbers or financial account numbers and security codes, student ID numbers, and usernames and passwords. In an FAQ attached to the notice, the hospital said it discovered suspicious activity on March 12 but it took until April 8 for its security team to officially identify it as « a security matter.
