Analecta Cyber Company Blog: Breach of JASACare email system impacts 1,154 patients

2016-04-15

Breach of JASACare email system impacts 1,154 patients

The company recently reported to authorities that it was attacked by cybercriminals. The attackers were able to infiltrate the JASACare network and gain access to its email system. During the initial investigation, it was alleged that the hackers' ultimate goal was to access corporate accounts and steal money through fraudulent bank transfers. But as a result of the breach in one of the employee’s email account, sensitive information about patients and employees also may have been accessed.



JASACare is a home care service provider based in New York. They are a licensed agency that provides home health aide, personal care assistance and nursing services to older adults and their families.

The company recently reported to authorities that it was attacked by cybercriminals. The attackers were able to infiltrate the JASACare network and gain access to its email system. During the initial investigation, it was alleged that the hackers' ultimate goal was to access corporate accounts and steal money through fraudulent bank transfers. But as a result of the breach in one of the employee’s email account, sensitive information about patients and employees also may have been accessed.

The breach on JASACare's system happened January 29, 2016. At the moment, it is still uncertain how the attack was executed. Moreover, the technique the hackers used to obtain login credentials and access the employee's email account remain unknown. The hack lasted for less than a couple of hours and was made less severe thanks to prompt detection. Nonetheless, authorities cannot rule out the possibility that the attackers viewed or copied the data before the attack was discovered.

Protections in place

Luckily, further investigations suggest no evidence indicating a download on any data within the accessed employee's email account. As soon as the attack was discovered, JASACare was able to respond to the breach by immediately changing the password of the compromised account.

Results of the investigation revealed that information on 1,154 individuals, including patients and employees, may have been accessed. These consisted of names, addresses, phone numbers, birthdates, health insurance information, Social Security numbers and JASACare account balances.

The company is still in the process of notifying all patients and staff members affected by the attack. And just like other organizations who suffered a data breach, they guaranteed every affected patient and staff free credit-monitoring services for one year.

JASACare stated that it will be implementing a thorough review of its security protocols and will continuously look for measures to increase the security of their system and prevent similar breaches in the future