The California Office of the Attorney General reported a data breach involving the County of Contra Costa on May 11, 2023. The breach occurred on September 19 and 20, 2022, due to an email phishing incident that potentially exposed personal information, including names, Social Security numbers, and medical information, although the exact number of individuals affected is unknown.
Source: https://oag.ca.gov/ecrime/databreach/reports/sb24-566621
TPRM report: https://www.rankiteo.com/company/contra-costa-county
"id": "con557072725",
"linkid": "contra-costa-county",
"type": "Breach",
"date": "6/2022",
"severity": "60",
"impact": "3",
"explanation": "Attack with significant impact with internal employee data leaks"{'affected_entities': [{'industry': 'Public Administration',
'location': 'California, USA',
'name': 'County of Contra Costa',
'type': 'Government'}],
'attack_vector': 'Phishing',
'data_breach': {'personally_identifiable_information': True,
'sensitivity_of_data': 'High',
'type_of_data_compromised': ['Names',
'Social Security numbers',
'Medical information']},
'date_detected': '2023-05-11',
'date_publicly_disclosed': '2023-05-11',
'description': 'The California Office of the Attorney General reported a data '
'breach involving the County of Contra Costa on May 11, 2023. '
'The breach occurred on September 19 and 20, 2022, due to an '
'email phishing incident that potentially exposed personal '
'information, including names, Social Security numbers, and '
'medical information, although the exact number of individuals '
'affected is unknown.',
'impact': {'data_compromised': ['Names',
'Social Security numbers',
'Medical information']},
'initial_access_broker': {'entry_point': 'Email Phishing'},
'post_incident_analysis': {'root_causes': 'Email Phishing'},
'references': [{'date_accessed': '2023-05-11',
'source': 'California Office of the Attorney General'}],
'title': 'Data Breach at County of Contra Costa',
'type': 'Data Breach',
'vulnerability_exploited': 'Email Phishing'}