The California Office of the Attorney General reported a data breach involving CalOptima on October 27, 2021. The incident occurred between August 4, 2021, and August 19, 2021, when a COVID-19 Vaccine Health Reward Approval letter was mailed to the wrong addresses, potentially exposing members' names, health plan names, and vaccination statuses. The breach affected up to an unknown number of individuals.
Source: https://oag.ca.gov/ecrime/databreach/reports/sb24-546955
TPRM report: https://www.rankiteo.com/company/caloptima
"id": "cal121072625",
"linkid": "caloptima",
"type": "Breach",
"date": "8/2021",
"severity": "25",
"impact": "1",
"explanation": "Attack without any consequences"{'affected_entities': [{'customers_affected': 'Unknown',
'industry': 'Healthcare',
'location': 'California',
'name': 'CalOptima',
'type': 'Healthcare Organization'}],
'attack_vector': 'Misdirected Mail',
'data_breach': {'number_of_records_exposed': 'Unknown',
'personally_identifiable_information': ['names'],
'sensitivity_of_data': 'Medium',
'type_of_data_compromised': ['names',
'health plan names',
'vaccination statuses']},
'date_detected': '2021-08-04',
'date_publicly_disclosed': '2021-10-27',
'description': 'A data breach involving CalOptima occurred when a COVID-19 '
'Vaccine Health Reward Approval letter was mailed to the wrong '
"addresses, potentially exposing members' names, health plan "
'names, and vaccination statuses.',
'impact': {'data_compromised': ['names',
'health plan names',
'vaccination statuses']},
'references': [{'date_accessed': '2021-10-27',
'source': 'California Office of the Attorney General'}],
'title': 'CalOptima Data Breach',
'type': 'Data Breach'}