MultiPlan Inc.

The California Office of the Attorney General disclosed a data breach affecting MultiPlan Inc. in June 2021. The incident stemmed from unauthorized access to an employee’s email account between December 23, 2020, and January 27, 2021. While the exact scope of compromised data and the number of impacted individuals remain undisclosed, the breach exposed sensitive information tied to the employee’s communications. Such incidents typically involve risks like exposure of internal business correspondence, personally identifiable information (PII) of employees or clients, or proprietary data shared via email. The lack of specificity in the report heightens concerns about potential downstream effects, including identity theft, financial fraud, or reputational harm to the company. The breach underscores vulnerabilities in email security protocols, particularly phishing or credential compromise, which are common attack vectors for gaining unauthorized access to corporate systems. MultiPlan, a healthcare cost-management firm, handles vast amounts of sensitive data, making such breaches particularly critical in regulated industries like healthcare.

Source: https://oag.ca.gov/ecrime/databreach/reports/sb24-542234

TPRM report: https://www.rankiteo.com/company/discovery-health-partners

"id": "dis116082125",
"linkid": "discovery-health-partners",
"type": "Breach",
"date": "12/2020",
"severity": "60",
"impact": "3",
"explanation": "Attack with significant impact with internal employee data leaks"

{'affected_entities': [{'industry': 'Healthcare (Cost Management Solutions)',
                        'location': 'United States (California)',
                        'name': 'MultiPlan Inc.',
                        'type': 'Corporation'}],
 'attack_vector': 'Unauthorized Access (Email Account Compromise)',
 'date_publicly_disclosed': '2021-06-24',
 'description': 'The California Office of the Attorney General reported a data '
                'breach involving MultiPlan Inc. on June 24, 2021. The breach '
                'occurred between December 23, 2020, and January 27, 2021, due '
                "to unauthorized access to an employee's email account. The "
                'specific number of affected individuals and exact types of '
                'information compromised are unknown.',
 'impact': {'systems_affected': ['Employee Email Account']},
 'initial_access_broker': {'entry_point': 'Employee Email Account'},
 'references': [{'date_accessed': '2021-06-24',
                 'source': 'California Office of the Attorney General'}],
 'regulatory_compliance': {'regulatory_notifications': ['California Office of '
                                                        'the Attorney '
                                                        'General']},
 'title': 'Data Breach at MultiPlan Inc.',
 'type': 'Data Breach'}

MultiPlan Inc.

THORChain: More than $10 million stolen from crypto platform THORChain

Cornick and Garber & Sandler LLP: Cornick, Garber & Sandler Data Breach Impacts 1,570: SSNs Exposed

Pierre et Vacances-Center Parcs, Maeva and La France du Nord au Sud: Le groupe Pierre et Vacances-Center Parcs ciblé par une cyberattaque, une plainte déposée pour une fuite de données concernant 1,6 million de réservations