South Denver Cardiology Associates Discloses Data Breach Affecting 287,000 Patients

By   ISBuzz Team
Writer , Information Security Buzz | Mar 15, 2022 03:44 am PST

In response to reports that South Denver Cardiology Associates has recently announced it was the victim of a cyberattack in January 2022 in which files containing patient information were accessed, experts commented below.

Notify of
1 Expert Comment
Oldest Most Voted
Inline Feedbacks
View all comments
Chris Clements
InfoSec Expert
March 15, 2022 11:44 am

The reported timing of the breach detection was one of the faster responses I’ve seen in recent years. Often attackers dwell time extends months before they are detected. Whether this was due to excellent detection capabilities at SDCA or from the attackers making their presence unmistakable by launching ransomware or making extortion threats isn’t clear from the notification provided.  Regardless, it’s instructive that even with the reportedly short 3-day detection period that the damage was still significant. The centralization of data silos and speed of modern computers and networks mean that an attacker that gains a foothold into a victim’s organization can compromise mass quantities of information with shocking speed.  To protect themselves and their customers, businesses must take this into account when forming their defensive strategy. If detecting suspicious activities is part of a manual process that is performed on only a monthly or quarterly basis such as a log review, the potential window for an attacker to do significant damage is gigantic.

Last edited 1 year ago by Chris Clements

Recent Posts

Would love your thoughts, please comment.x