CalOptima reported a data breach on October 14, 2016, involving a departing employee who downloaded protected health information to an unencrypted USB flash drive on or about August 17, 2016. The breach potentially affected names, demographic information, and social security numbers of members, including minors. CalOptima is offering credit monitoring services at no cost for 12 months as a precaution.
Source: https://oag.ca.gov/ecrime/databreach/reports/sb24-64419
TPRM report: https://www.rankiteo.com/company/caloptima
"id": "cal231072825",
"linkid": "caloptima",
"type": "Breach",
"date": "8/2016",
"severity": "60",
"impact": "3",
"explanation": "Attack with significant impact with internal employee data leaks"{'affected_entities': [{'industry': 'Healthcare',
'name': 'CalOptima',
'type': 'Healthcare Organization'}],
'attack_vector': 'Insider Threat',
'data_breach': {'data_exfiltration': True,
'personally_identifiable_information': True,
'sensitivity_of_data': 'High',
'type_of_data_compromised': ['Names',
'Demographic Information',
'Social Security Numbers']},
'date_detected': '2016-10-14',
'date_publicly_disclosed': '2016-10-14',
'description': 'CalOptima reported a data breach on October 14, 2016, '
'involving a departing employee who downloaded protected '
'health information to an unencrypted USB flash drive on or '
'about August 17, 2016. The breach potentially affected names, '
'demographic information, and social security numbers of '
'members, including minors. CalOptima is offering credit '
'monitoring services at no cost for 12 months as a precaution.',
'impact': {'data_compromised': ['Names',
'Demographic Information',
'Social Security Numbers']},
'references': [{'date_accessed': '2016-10-14',
'source': 'CalOptima Data Breach Report'}],
'response': {'remediation_measures': ['Offering credit monitoring services at '
'no cost for 12 months']},
'threat_actor': 'Departing Employee',
'title': 'CalOptima Data Breach',
'type': 'Data Breach',
'vulnerability_exploited': 'Unencrypted USB Flash Drive'}