Aetna data breach caused by subcontractor OneTouchPoint

Aetna data breach caused by subcontractor OneTouchPoint

https://www.bankinfosecurity.com/aetna-reports-326000-affected-by-mailing-vendor-hack-a-19691

Exploit: Supply Chain
Aetna: Insurer

-Hastings-featuredimg

Risk to Business: 2.631 = Moderate

Health insurance heavyweight Aetna has reported a data breach to federal regulators affecting nearly 326,000 individuals. This breach was spurred by a ransomware attack at a service provider for an Aetna subcontractor, mailing company OneTouchPoint. This incident is one of the first reported as a direct result of that cyberattack. The OneTouchPoint breach is expected to impact over 30 large and small health insurers and plan providers.

-Hastings-featuredimg

Individual Risk: 2.755 = Moderate
Aetna said that the exposed information for individuals may include names, addresses, dates of birth, and limited medical information.

How It Could Affect Your Customers’ Business: Business services companies are becoming choice targets for cybercriminals looking for quick scores of data.

Risk Levels:
1 - 1.5 = Extreme Risk
1.51 - 2.49 = Severe Risk
2.5 - 3 = Moderate Risk

*The risk score is calculated using a formula that considers a wide range of factors related to the assessed breach.