The California Office of the Attorney General reported a data breach involving Dignity Health - Mercy San Juan Medical Center on November 13, 2017. From September 8 to 12, 2017, a software error in the Employee Self Service system exposed employee names, employee ID numbers, and Social Security Numbers to other internal staff. The total number of individuals affected is unknown.
Source: https://oag.ca.gov/ecrime/databreach/reports/sb24-104222
TPRM report: https://www.rankiteo.com/company/dignity-health
"id": "dig328072625",
"linkid": "dignity-health",
"type": "Breach",
"date": "9/2017",
"severity": "60",
"impact": "3",
"explanation": "Attack with significant impact with internal employee data leaks"{'affected_entities': [{'industry': 'Healthcare',
'location': 'California',
'name': 'Dignity Health - Mercy San Juan Medical '
'Center',
'type': 'Healthcare'}],
'attack_vector': 'Software Error',
'data_breach': {'personally_identifiable_information': True,
'sensitivity_of_data': 'High',
'type_of_data_compromised': ['Employee names',
'Employee ID numbers',
'Social Security Numbers']},
'date_detected': '2017-09-08',
'date_publicly_disclosed': '2017-11-13',
'description': 'A software error in the Employee Self Service system exposed '
'employee names, employee ID numbers, and Social Security '
'Numbers to other internal staff.',
'impact': {'data_compromised': ['Employee names',
'Employee ID numbers',
'Social Security Numbers'],
'systems_affected': ['Employee Self Service system']},
'post_incident_analysis': {'root_causes': 'Software Error'},
'references': [{'date_accessed': '2017-11-13',
'source': 'California Office of the Attorney General'}],
'title': 'Data Breach at Dignity Health - Mercy San Juan Medical Center',
'type': 'Data Breach',
'vulnerability_exploited': 'Employee Self Service system'}