On January 8, 2021, the California Office of the Attorney General reported a data breach involving American Anesthesiology, Inc., which occurred between June 17, 2020, and June 22, 2020, due to unauthorized access to email accounts through phishing. The breach potentially compromised patients' personal information, including names, addresses, and health insurance information; however, the specific number of individuals affected is unknown.
Source: https://oag.ca.gov/ecrime/databreach/reports/sb24-198346
TPRM report: https://www.rankiteo.com/company/american-anesthesiology
"id": "ame539072625",
"linkid": "american-anesthesiology",
"type": "Breach",
"date": "6/2020",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"{'affected_entities': [{'industry': 'Healthcare',
'name': 'American Anesthesiology, Inc.',
'type': 'Healthcare Provider'}],
'attack_vector': 'Phishing',
'data_breach': {'personally_identifiable_information': True,
'sensitivity_of_data': 'High',
'type_of_data_compromised': ['Personal Information',
'Health Insurance Information']},
'date_detected': '2021-01-08',
'date_publicly_disclosed': '2021-01-08',
'description': 'Unauthorized access to email accounts through phishing '
"potentially compromised patients' personal information.",
'impact': {'data_compromised': ['Names',
'Addresses',
'Health Insurance Information']},
'initial_access_broker': {'entry_point': 'Email Accounts'},
'post_incident_analysis': {'root_causes': 'Phishing'},
'references': [{'date_accessed': '2021-01-08',
'source': 'California Office of the Attorney General'}],
'title': 'American Anesthesiology, Inc. Data Breach',
'type': 'Data Breach',
'vulnerability_exploited': 'Email Accounts'}