/

21st Century Oncology Data Breach: What & How It Happe...

21st Century Oncology Data Breach: What & How It Happened?

Twingate Team

Jun 28, 2024

In March 2016, 21st Century Oncology announced a significant data breach that had occurred in November 2015. The breach affected many patients and involved unauthorized access to the company's database. The company later agreed to pay a fine to the Department of Health and Human Services and settled related lawsuits.

How many accounts were compromised?

The breach impacted data related to 2.2 million individuals.

What data was leaked?

The data exposed in the breach included patient names, Social Security numbers, physicians' names, treatment details, and insurance information.

How was 21st Century Oncology hacked?

The attacker breached 21st Century Oncology's database through a remote desktop protocol, gaining unauthorized access to sensitive patient information. Details on the specific techniques employed by the hacker remain unclear.

21st Century Oncology's solution

In response to the hack, 21st Century Oncology took several measures to secure its platform and prevent future incidents. This included adding an extra layer of protection to their internal security protocols and working with the Federal Bureau of Investigation and a cyber forensics firm for a thorough investigation. The company also notified affected patients and provided them with a free year-long credit protection service. Furthermore, 21st Century Oncology agreed to comply with a corrective action plan that requires the company to appoint a compliance representative, conduct a risk analysis, revise its cybersecurity policies, and develop internal breach reporting procedures.

How do I know if I was affected?

21st Century Oncology notified affected patients about the breach and provided them with credit protection services. If you were a patient at 21st Century Oncology and did not receive a notification, you can visit HaveIBeenPwned to check if your credentials were affected.

What should affected users do?

In general, affected users should:

  • Change Your Password: Immediately update your password for the breached account. Make sure the new password is strong and unique, not previously used on any other platform.

  • Reset Passwords for Other Accounts: If you've used the same or similar passwords for other online accounts, reset those as well. This is crucial as attackers often try using stolen passwords on multiple sites.

  • Enable Two-Factor Authentication (2FA): Activate 2FA on the breached account and any other important online accounts. Consider enabling this additional security feature to significantly reduce the risk of unauthorized access.

  • Monitor Your Credit: Keep an eye on your credit reports and financial accounts for any suspicious activity, as personal information exposed in a breach could be used for identity theft or fraud.

For more specific help and instructions related to 21st Century Oncology's data breach, please contact 21st Century Oncology's support directly.

Where can I go to learn more?

If you want to find more information on the 21st Century Oncology data breach, check out the following news articles:

Rapidly implement a modern Zero Trust network that is more secure and maintainable than VPNs.

/

21st Century Oncology Data Breach: What & How It Happe...

21st Century Oncology Data Breach: What & How It Happened?

Twingate Team

Jun 28, 2024

In March 2016, 21st Century Oncology announced a significant data breach that had occurred in November 2015. The breach affected many patients and involved unauthorized access to the company's database. The company later agreed to pay a fine to the Department of Health and Human Services and settled related lawsuits.

How many accounts were compromised?

The breach impacted data related to 2.2 million individuals.

What data was leaked?

The data exposed in the breach included patient names, Social Security numbers, physicians' names, treatment details, and insurance information.

How was 21st Century Oncology hacked?

The attacker breached 21st Century Oncology's database through a remote desktop protocol, gaining unauthorized access to sensitive patient information. Details on the specific techniques employed by the hacker remain unclear.

21st Century Oncology's solution

In response to the hack, 21st Century Oncology took several measures to secure its platform and prevent future incidents. This included adding an extra layer of protection to their internal security protocols and working with the Federal Bureau of Investigation and a cyber forensics firm for a thorough investigation. The company also notified affected patients and provided them with a free year-long credit protection service. Furthermore, 21st Century Oncology agreed to comply with a corrective action plan that requires the company to appoint a compliance representative, conduct a risk analysis, revise its cybersecurity policies, and develop internal breach reporting procedures.

How do I know if I was affected?

21st Century Oncology notified affected patients about the breach and provided them with credit protection services. If you were a patient at 21st Century Oncology and did not receive a notification, you can visit HaveIBeenPwned to check if your credentials were affected.

What should affected users do?

In general, affected users should:

  • Change Your Password: Immediately update your password for the breached account. Make sure the new password is strong and unique, not previously used on any other platform.

  • Reset Passwords for Other Accounts: If you've used the same or similar passwords for other online accounts, reset those as well. This is crucial as attackers often try using stolen passwords on multiple sites.

  • Enable Two-Factor Authentication (2FA): Activate 2FA on the breached account and any other important online accounts. Consider enabling this additional security feature to significantly reduce the risk of unauthorized access.

  • Monitor Your Credit: Keep an eye on your credit reports and financial accounts for any suspicious activity, as personal information exposed in a breach could be used for identity theft or fraud.

For more specific help and instructions related to 21st Century Oncology's data breach, please contact 21st Century Oncology's support directly.

Where can I go to learn more?

If you want to find more information on the 21st Century Oncology data breach, check out the following news articles:

Rapidly implement a modern Zero Trust network that is more secure and maintainable than VPNs.

21st Century Oncology Data Breach: What & How It Happened?

Twingate Team

Jun 28, 2024

In March 2016, 21st Century Oncology announced a significant data breach that had occurred in November 2015. The breach affected many patients and involved unauthorized access to the company's database. The company later agreed to pay a fine to the Department of Health and Human Services and settled related lawsuits.

How many accounts were compromised?

The breach impacted data related to 2.2 million individuals.

What data was leaked?

The data exposed in the breach included patient names, Social Security numbers, physicians' names, treatment details, and insurance information.

How was 21st Century Oncology hacked?

The attacker breached 21st Century Oncology's database through a remote desktop protocol, gaining unauthorized access to sensitive patient information. Details on the specific techniques employed by the hacker remain unclear.

21st Century Oncology's solution

In response to the hack, 21st Century Oncology took several measures to secure its platform and prevent future incidents. This included adding an extra layer of protection to their internal security protocols and working with the Federal Bureau of Investigation and a cyber forensics firm for a thorough investigation. The company also notified affected patients and provided them with a free year-long credit protection service. Furthermore, 21st Century Oncology agreed to comply with a corrective action plan that requires the company to appoint a compliance representative, conduct a risk analysis, revise its cybersecurity policies, and develop internal breach reporting procedures.

How do I know if I was affected?

21st Century Oncology notified affected patients about the breach and provided them with credit protection services. If you were a patient at 21st Century Oncology and did not receive a notification, you can visit HaveIBeenPwned to check if your credentials were affected.

What should affected users do?

In general, affected users should:

  • Change Your Password: Immediately update your password for the breached account. Make sure the new password is strong and unique, not previously used on any other platform.

  • Reset Passwords for Other Accounts: If you've used the same or similar passwords for other online accounts, reset those as well. This is crucial as attackers often try using stolen passwords on multiple sites.

  • Enable Two-Factor Authentication (2FA): Activate 2FA on the breached account and any other important online accounts. Consider enabling this additional security feature to significantly reduce the risk of unauthorized access.

  • Monitor Your Credit: Keep an eye on your credit reports and financial accounts for any suspicious activity, as personal information exposed in a breach could be used for identity theft or fraud.

For more specific help and instructions related to 21st Century Oncology's data breach, please contact 21st Century Oncology's support directly.

Where can I go to learn more?

If you want to find more information on the 21st Century Oncology data breach, check out the following news articles: