• Home
  • Breach
  • California Department of Corrections and Rehabilitation
Breach cyber

California Department of Corrections and Rehabilitation

May 6, 2020 1 min read
California Department of Corrections and Rehabilitation

On May 6, 2020, the California Department of Corrections and Rehabilitation (CDCR) experienced a data breach due to unauthorized access to a SharePoint site. The compromised system contained sensitive personal identifying information (PII), including names and Social Security numbers (SSNs) of individuals. The breach was not immediately detected and was only reported on July 14, 2020—over two months after the incident. The exact number of affected individuals remains undisclosed, raising concerns about the scale of exposure. Given the nature of the data (SSNs and PII), the breach poses significant risks of identity theft, financial fraud, and long-term reputational harm to the CDCR. The delayed disclosure further exacerbates the potential consequences, as affected individuals were left uninformed and vulnerable for an extended period. The incident underscores critical gaps in cybersecurity monitoring, incident response, and transparency within the department.

Source: https://oag.ca.gov/ecrime/databreach/reports/sb24-191984

TPRM report: https://www.rankiteo.com/company/california-department-of-corrections-and-rehabilitation

"id": "cal025091825",
"linkid": "california-department-of-corrections-and-rehabilitation",
"type": "Breach",
"date": "5/2020",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"
{'affected_entities': [{'customers_affected': 'Unknown',
                        'industry': 'Public Administration / Corrections',
                        'location': 'California, USA',
                        'name': 'California Department of Corrections and '
                                'Rehabilitation',
                        'type': 'Government Agency'}],
 'data_breach': {'number_of_records_exposed': 'Unknown',
                 'personally_identifiable_information': ['Names',
                                                         'Social Security '
                                                         'Numbers'],
                 'sensitivity_of_data': 'High',
                 'type_of_data_compromised': ['Personally Identifiable '
                                              'Information (PII)']},
 'date_detected': '2020-05-06',
 'date_publicly_disclosed': '2020-07-14',
 'description': 'The California Department of Corrections and Rehabilitation '
                'reported a data breach involving unauthorized access to a '
                'SharePoint site containing personal identifying information, '
                'including names and Social Security numbers.',
 'impact': {'data_compromised': ['Names', 'Social Security Numbers'],
            'identity_theft_risk': 'High (PII exposed)',
            'systems_affected': ['SharePoint site']},
 'title': 'California Department of Corrections and Rehabilitation Data Breach '
          '(2020)',
 'type': 'Data Breach'}
Published by
Jeremy C
Jeremy C
You might also like
Great! Next, complete checkout for full access to Rankiteo Blog.
Welcome back! You've successfully signed in.
You've successfully subscribed to Rankiteo Blog.
Success! Your account is fully activated, you now have access to all content.
Success! Your billing info has been updated.
Your billing was not updated.