New Threat Research: Uncovering Adversarial LDAP Tradecraft

Read Threat Research


Toronto Based Health Network SHN Suffers Breach

Toronto based hospital network Scarborough Health Network (SHN), has confirmed that they suffered a cyber incident that was first noticed on January 25th. Investigations were then conducted, and it was found that both current and past data was likely at risk. The security team working with SHN was able to confirm that the threat actors behind the breach no longer had access after February 1st. Information that was likely accessed when threat actors were in the network includes patients’ names, dates of birth, marital statuses, home addresses, phone numbers, email addresses, OHIP numbers, insurance policy numbers, lab results, diagnosis information, and COVID-19 immunization records. Some employee information may have also been viewable. At this time, SHN does not believe there has been any misuse of the information, but that could change moving forward. Ontario’s information and privacy commissioner has been notified and SHN has vowed to give all patients, past and present, free access to a two-year subscription of identity monitoring and credit fraud monitoring.

Analyst Notes

The fraud monitoring offered by SHN should be taken advantage of by anyone who thinks they could potentially be a victim. It is likely that the affected patients will face phishing attempts due to this incident. SHN also stated they will not contact anyone by email requesting payment or other sensitive information. Vigilance toward suspicious emails or messages can save a lot of trouble for those receiving them. Personal information should never be given out over email or phone to an untrusted party.