In December 2020, the California Office of the Attorney General disclosed a data breach affecting Sonoma Recovery Services, LLC (Olympia House), which occurred between July 1 and August 7, 2020. The incident exposed sensitive personal information, including names, addresses, Social Security numbers, and financial details of an undisclosed number of individuals. The breach compromised highly confidential data, raising concerns about identity theft, financial fraud, and long-term reputational damage for the affected parties. While the exact cause (e.g., phishing, system vulnerability, or external cyberattack) was not specified, the nature of the leaked information particularly Social Security and financial records indicates a severe violation of data security protocols. Such breaches often lead to regulatory scrutiny, legal liabilities, and erosion of trust among clients, especially in sectors like healthcare and recovery services where confidentiality is paramount. The lack of clarity on the number of victims further complicates risk assessment and mitigation efforts.
Source: https://oag.ca.gov/ecrime/databreach/reports/sb24-197196
TPRM report: https://www.rankiteo.com/company/align-recovery-centers-sonoma
"id": "ali134082125",
"linkid": "align-recovery-centers-sonoma",
"type": "Breach",
"date": "7/2020",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"{'affected_entities': [{'customers_affected': 'Unknown',
'industry': 'Healthcare',
'location': 'California, USA',
'name': 'Sonoma Recovery Services, LLC d/b/a Olympia '
'House',
'type': 'Healthcare (Recovery Services)'}],
'data_breach': {'number_of_records_exposed': 'Unknown',
'personally_identifiable_information': ['names',
'addresses',
'Social Security '
'numbers'],
'sensitivity_of_data': 'High',
'type_of_data_compromised': ['Personally Identifiable '
'Information (PII)',
'Financial Information']},
'date_publicly_disclosed': '2020-12-15',
'description': 'On December 15, 2020, the California Office of the Attorney '
'General reported a data breach involving Sonoma Recovery '
'Services, LLC d/b/a Olympia House. The breach occurred '
'between July 1, 2020 and August 7, 2020, affecting personal '
'information such as names, addresses, Social Security '
'numbers, and financial information, although the exact number '
'of individuals affected is unknown.',
'impact': {'data_compromised': ['names',
'addresses',
'Social Security numbers',
'financial information'],
'identity_theft_risk': 'High (PII and financial data exposed)',
'payment_information_risk': 'High (financial information exposed)'},
'references': [{'source': 'California Office of the Attorney General'}],
'regulatory_compliance': {'regulations_violated': ['California Consumer '
'Privacy Act (CCPA)',
'Potentially HIPAA (if '
'healthcare data was '
'involved)'],
'regulatory_notifications': ['California Office of '
'the Attorney '
'General']},
'title': 'Data Breach at Sonoma Recovery Services, LLC d/b/a Olympia House',
'type': 'Data Breach'}