Kaiser Permanente, one of the largest not-for-profit health plans and health care providers in the United States, has announced a data leak that exposed the health records of over 69,000 people. Kaiser Permanente has served approximately 12.5 million people in eight U.S. states and Washington, D.C, since 1945. On April 5, 2022, an attacker accessed an employee’s email account containing patients’ Protected Health Information (PHI), according to the notification posted on the company’s website. “This notice describes a security incident that may have impacted the protected health information of some Kaiser Permanente patients who may have been affected by an unauthorized access incident on April 5, 2022. The specifics of the unauthorized access were provided to individuals affected in a letter sent by Kaiser Permanente on June 3, 2022,” stated the health care provider.
When evaluating a Managed Detection & Response (MDR) service there are 5 critical components that