Supply chain
β Supply Chain
United Parcel Service (UPS) and Norfolk Southern Railroad Third-Party Breach (January 2021)
Primary Source βIncident Details
Truckers’ Medical Records Leaked. Ransomware attack on Virginia healthcare provider may have exposed medical records of transport workers. Medical records belonging to truck drivers and rail workers may have been exposed following an alleged cyber-attack on an occupational healthcare provider in Virginia. Third-party company: Taylor Made Diagnostics (TMD).
Technical Details
- Initial Attack Vector
- Compromise of third-party service provider / vendor relationship
- Vendor / Product
- Taylor Made Diagnostics (TMD)
- Supply Chain Attack
- β Confirmed third-party / vendor compromise
Timeline
- 2021-01-01 Breach occurred
- 2021-01-21 Publicly disclosed