The California Office of the Attorney General reported that CorrectCare Integrated Health experienced a data breach on January 22, 2022. The breach involved the inadvertent exposure of protected health information (PHI) of individuals incarcerated in a CDCR facility, affecting potentially thousands of people, although the exact number is unknown. Affected data included full names, dates of birth, social security numbers, and limited health information, with remediation actions initiated by CorrectCare immediately upon discovery of the incident.
Source: https://oag.ca.gov/ecrime/databreach/reports/sb24-558759
TPRM report: https://www.rankiteo.com/company/correctcare-integrated-health
"id": "cor406072525",
"linkid": "correctcare-integrated-health",
"type": "Breach",
"date": "1/2022",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"{'affected_entities': [{'customers_affected': 'potentially thousands of people',
'industry': 'Healthcare',
'location': 'California',
'name': 'CorrectCare Integrated Health',
'type': 'Healthcare Provider'}],
'data_breach': {'number_of_records_exposed': 'potentially thousands of people',
'personally_identifiable_information': ['full names',
'dates of birth',
'social security '
'numbers'],
'sensitivity_of_data': 'high',
'type_of_data_compromised': ['full names',
'dates of birth',
'social security numbers',
'limited health information']},
'date_detected': '2022-01-22',
'description': 'The California Office of the Attorney General reported that '
'CorrectCare Integrated Health experienced a data breach on '
'January 22, 2022. The breach involved the inadvertent '
'exposure of protected health information (PHI) of individuals '
'incarcerated in a CDCR facility, affecting potentially '
'thousands of people, although the exact number is unknown. '
'Affected data included full names, dates of birth, social '
'security numbers, and limited health information, with '
'remediation actions initiated by CorrectCare immediately upon '
'discovery of the incident.',
'impact': {'data_compromised': ['full names',
'dates of birth',
'social security numbers',
'limited health information']},
'references': [{'source': 'California Office of the Attorney General'}],
'response': {'remediation_measures': 'initiated by CorrectCare immediately '
'upon discovery of the incident'},
'title': 'CorrectCare Integrated Health Data Breach',
'type': 'Data Breach'}