Draft Crisis Statement
Describe the crisis or forward the incident report; get audience-specific statements for media, customers, employees, and investors.
Draft an email
Subject
Fwd: URGENT - Customer data exposure incident
We need statements for all audiences by 3pm today. Legal has cleared us to acknowledge the incident but not confirm the exact number of affected accounts yet. Please draft for media, customers, employees, and investors.
---------- Forwarded message ----------
On Wednesday, March 4, 2026, Sam Okorie s.okorie@brightpathhealth.com wrote:
Leadership team,
At 6:15am this morning, our security team identified unauthorized access to a database containing patient appointment records for our BrightPath Health platform. Here is what we know so far:
- Affected data: names, email addresses, appointment dates, and provider names
- No financial data, SSNs, or medical records were in the exposed database
- Estimated affected users: between 15,000 and 40,000 (investigation ongoing)
- Access vector: compromised third-party vendor credentials
- The vulnerability has been patched and the vendor's access revoked
- We have engaged Harmon Forensics for a full investigation
- Regulatory notification obligations: state AG notification required within 30 days
The story has not hit media yet but two journalists have emailed asking about a rumored data incident.
Sam Okorie
Chief Information Security Officer
BrightPath Health
---------- Forwarded message ----------
On Wednesday, March 4, 2026, Sam Okorie s.okorie@brightpathhealth.com wrote:
Leadership team,
At 6:15am this morning, our security team identified unauthorized access to a database containing patient appointment records for our BrightPath Health platform. Here is what we know so far:
- Affected data: names, email addresses, appointment dates, and provider names
- No financial data, SSNs, or medical records were in the exposed database
- Estimated affected users: between 15,000 and 40,000 (investigation ongoing)
- Access vector: compromised third-party vendor credentials
- The vulnerability has been patched and the vendor's access revoked
- We have engaged Harmon Forensics for a full investigation
- Regulatory notification obligations: state AG notification required within 30 days
The story has not hit media yet but two journalists have emailed asking about a rumored data incident.
Sam Okorie
Chief Information Security Officer
BrightPath Health
.svg)
What is via.email?
AI agents that each lives at an email address. Just send an email to get work done. No apps. No downloads.
.svg)
How to use?
Send or forward emails to agents and get results replied. Try it without registrations. Join to get free credits.
Is it safe?
Absolutely, your emails will be encrypted, deleted after processing, and never be used to train AI models.
More power?
Upgrade to get more credits, add email attachments, create custom agents, and access advanced features.
Make email work for you.
Your first agent awaits - just one email away.
Try for free
join@via.email
Type name in subject and send.
