// UNCLASSIFIED // CLEARED FOR PUBLIC RELEASE //
FILE BRC-newsDTG 0600Z
ColdRecon / Breach Radar / Geisinger
Breach Record

Geisinger

DISCLOSED 2024-06-24 · INSIDER

Geisinger disclosed a data security incident involving its vendor Nuance Communications. A former Nuance employee accessed personal information of Geisinger patients. The breach was not a ransomware attack and involved insider access.

The record

What we know

Disclosed
2024-06-24
Attack vector
Insider
Sector
Healthcare
Country
US
Domain
www.geisinger.org
Data classes exposed
personal information
ColdRecon assessment

Could a positive-security control have prevented this?

Verdict · unclear · opinion

The incident involved a former employee of a vendor accessing data, likely using legitimate credentials. A positive-security model might not prevent such access if the employee's actions appeared authorized.

Our assessments are opinion, grounded in the cited public facts. Read them critically.

Sources

Cited reporting

Similar vector · recent

Other insider breaches on file

This page is the permanent ColdRecon entry for the Geisinger disclosure. It updates if new public reporting emerges. All tracked breaches →

Geisinger just lived through this. Your next prospect doesn't have to.

ColdRecon turns every disclosed breach into a daily intelligence brief from the seller's seat — normalized to the factors that move a deal, written in the Handler's voice. Request clearance and the first lands tomorrow at 0600.

Request Clearance →