Massachusetts-based Shields Health Care group was notified of suspicious activity that may have led to a data compromise. Following an investigation, it was discovered that a threat actor had unlawfully accessed Shields systems between March 7 and March 21 of this year. A representative of Shields stated the organization notified federal law enforcement upon the discovery of the intrusion and would notify any individuals who may have been impacted. Shields reported the attack to the US Department of Health and Human Services Office for Civil Rights, saying 2 million people might have been impacted. The types of patient data that may have been accessed includes name, Social Security number, date of birth, home address, provider information, diagnosis, billing information, insurance number and information, medical record number, patient ID, and other medical or treatment information. Shields found no evidence of identity theft or fraud but urged patients to review their security guidance.
By Akshay Rohatgi and Randy Pargman About this Student Research Project Binary Defense’s mission is