Back to Email phishing

Email phishing

Colorado-based CCSPA falls victim to email phishing, exposing data of more than 23,000 patients.

On February 1, 2019, Colorado-based Critical Care, Pulmonary & Sleep Associates (CCSPA) reported that the personal data of 23,000 patients was breached because of a phishing attack. The compromised data includes names, dates of service, diagnoses, medical conditions, diagnostic studies, medications, treatment details, addresses, dates of birth, and other treatment information.

What really happened?

On November 23, 2018, CCPSA officials found that unidentified hackers gained access to an employee email account between August 14 and November 23, 2018 and began sending phishing emails to the contacts in the address list. CCPSA officials immediately blocked access to the compromised account to prevent further damage.

Officials consulted a third-party computer forensics firm to investigate the attack and determine the scale of the breach. As a security measure, CCPSA changed the password requirements of the users. Employees also had to complete mandatory security awareness training. CCPSA officials notified law enforcement and regulatory bodies for further investigation.

Don't want to make the news for the wrong reasons? Download ManageEngine Exchange Reporter Plus, a wholesome Exchange mailbox monitoring and reporting tool, to ward off any mail-bound threats

How ManageEngine can help.

Exchange Reporter Plus provides a host of reports that help you locate suspicious emails, both sent and received, based on keywords in their subject or body. Often the content and sender of malicious emails come across as valid, tricking users into clicking on them and causing serious damage to the business. This is why email attachments deserve critical attention.

With Exchange Reporter Plus, it's easy to set up filters to look out for malicious attachments—whether they're TXT, PPT, or BAT files.

You can locate emails based on:

  • Attachment name: Display all messages in your organization that have an attachment with a specific name. Knowing the names of malicious files helps you take necessary steps to stop email-bound threats.
  • Attachment type: Identify mailbox content based on an attachment’s file format to spot malicious software transfer over email.
  • Attachment size: Filter emails by size so you can easily spot the ones consuming too much space in your Exchange environment.

Exchange Reporter Plus’ reports also provide details on the date an attachment was received. Any dubious attachment can be easily identified from these reports.

Attachments by file name keyword
Attachments by file extension keyword
Attachments by file size

In attacks where the content and sender information vary, you can customize mailbox content reports to include all the keywords these different emails use.

Get started now with your free, 30-day trial of Exchange Reporter Plus.


Stay In The Know

Thank you

You will receive weekly cybersecurity news soon!

  • Please enter a business email id
    By clicking 'I'm Interested', you agree to processing of personal data according to the Privacy Policy.

2022 Zoho Corporation Pvt. Ltd. All rights reserved.