According to reports, a data leak occurred recently at Michigan Medical School, resulting in the theft of thousands of patient records.
According to reports, the data leak began on December 23, last year, when an employee’s e-mail account at Michigan Medical School was stolen. This account is used by attackers to obtain information and send phishing emails. However, the employee did not notice that the account had been compromised until January 6 of this year, when he reported the incident to the Michigan Medical School’s Technology Department.
Michigan Medical claimed that there was no evidence that the attack was intended to obtain patient health information, but data theft could not be ruled out. At the very least, all emails in this account are considered stolen.
The patient’s name, medical insurance number, address, date of birth, diagnosis and treatment information, and health insurance information are all included in the email. These emails contain job-related communication content that is used to coordinate and care for patients.
Michigan Medical School stated that it had implemented “additional technical support” on the e-mail system and infrastructure to prevent similar incidents from occurring in the future.
“Patient privacy is very important to us and we place a high value on it,” said Jeanne Strickland, chief compliance officer at Michigan Medical School.
In fact, this is not the first time that patient information has been leaked by Michigan Medical School. Between December 1 and January 25, a new employee visited patient records for no reason, according to the Detroit Liberty. This resulted in the loss of information for approximately 269 patients.
Erich is a network security specialist. “Once an attacker gains access to an email account, he will typically use it to spread malware, send fraudulent invoices to customers, request fund transfers, or steal information.”
“Attacks from legitimate accounts are usually very effective,” Erich Kron added, “because when people receive e-mail from within the organization, they automatically generate a sense of trust.”
Vinchin Backup & Recovery is the world’s most easy-to-use, flexible and reliable virtual machine backup software, which supports most of the virtualization environments. Vinchin supports the world’s most mainstream virtual environments including VMware, XenServer/XCP-ng, Hyper-V, RHV/oVirt, OpenStack, Sangfor HCI, Oracle Linux Virtualization Manager and Huawei FusionCompute(Xen Based). It prevents the loss of critical business data due to human misoperation, viruses, attacks, hardware failures, natural disasters, wars, etc. It now supports Chinese, English, German, Czech, etc. languages. By utilizing oVirt VM backup, instant VM recovery and granular restore features, you can fully ensure the high recoverability of your critical data in oVirt VMs and absolute business continuity.