On September 2, 2025, Harbor Regional Center detected unauthorized access to an employee’s email account, potentially exposing sensitive client data. The breach was confirmed by September 29, revealing that protected health information (PHI) and personally identifiable information (PII) including names, Social Security numbers, medical records, treatment details, health insurance data, and Medicare/Medicaid numbers may have been accessed. The compromised data varies per individual, with some affected by a single data type and others by multiple categories, heightening risks of identity theft and medical fraud. The incident was isolated to one email account but posed significant threats due to the center’s role in managing care for thousands of individuals with developmental disabilities in Los Angeles County. Harbor Regional Center responded by securing the account, launching a forensic investigation, and offering free credit monitoring to impacted individuals. Notifications were sent via mail, and a dedicated hotline and email were established for inquiries. The attacker’s identity remains unknown, leaving the scope of exploitation uncertain.
Source: https://www.claimdepot.com/data-breach/harbor-regional-center-2025
Harbor Regional Center cybersecurity rating report: https://www.rankiteo.com/company/harbor-regional-center
"id": "HAR4214242112525",
"linkid": "harbor-regional-center",
"type": "Breach",
"date": "5/2025",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"{'affected_entities': [{'customers_affected': 'thousands of individuals with '
'developmental disabilities',
'industry': 'healthcare (developmental disability '
'services)',
'location': 'Los Angeles County, California, USA',
'name': 'Harbor Regional Center',
'type': 'non-profit organization'}],
'attack_vector': 'compromised employee email account',
'customer_advisories': ['U.S. mail notifications with steps for protection',
'Hotline (833-647-1407) and email '
'(Privacy.Records@harborrc.org) for inquiries'],
'data_breach': {'data_exfiltration': 'potential (unconfirmed)',
'file_types_exposed': ['emails',
'attachments (likely containing '
'medical documents)'],
'personally_identifiable_information': ['names',
'addresses',
'dates of birth',
'Social Security '
'numbers',
'patient IDs/account '
'numbers',
'Medicare/Medicaid '
'numbers'],
'sensitivity_of_data': 'high (includes SSNs, medical records, '
'insurance details)',
'type_of_data_compromised': ['protected health information '
'(PHI)',
'personally identifiable '
'information (PII)']},
'date_detected': '2025-09-02',
'date_publicly_disclosed': '2025-09-29',
'description': 'On Sept. 2, 2025, Harbor Regional Center discovered potential '
'unauthorized access to an employee email account, raising '
'concerns about the security of sensitive client information. '
'By Sept. 29, 2025, the investigation confirmed that a limited '
'amount of protected health information (PHI) and personally '
'identifiable information (PII) may have been accessed. The '
'breach was limited to a single email account but exposed data '
'for thousands of individuals with developmental disabilities '
'in Los Angeles County. The exposed information varies per '
'individual and includes names, addresses, Social Security '
'numbers, medical records, and insurance details, posing risks '
'of identity theft and medical fraud.',
'impact': {'brand_reputation_impact': 'potential reputational damage due to '
'exposure of sensitive PHI/PII',
'data_compromised': ['names',
'addresses',
'dates of birth',
'Social Security numbers',
'medical information',
'patient IDs/account numbers',
'Medicare/Medicaid numbers',
'health insurance details',
'medical diagnoses/treatment information',
'medical history',
'prescription information',
'medical lab/test results',
'treatment locations/dates',
'provider names'],
'identity_theft_risk': 'high (due to exposure of SSNs, medical '
'records, and PII)',
'systems_affected': ['single employee email account']},
'investigation_status': 'completed (as of Sept. 29, 2025)',
'post_incident_analysis': {'corrective_actions': ['password reset',
'forensic investigation',
'credit monitoring for '
'affected individuals']},
'recommendations': ['Sign up for free identity theft protection services '
'offered by Harbor Regional Center.',
'Monitor credit reports and financial accounts for '
'unusual activity.',
'Be alert for phishing attempts using exposed '
'information.',
'Consider placing a fraud alert or credit freeze with '
'major credit bureaus.'],
'references': [{'source': 'Harbor Regional Center - Notification of Data '
'Security Incident'}],
'regulatory_compliance': {'regulations_violated': ['potential HIPAA '
'violations '
'(unconfirmed)']},
'response': {'communication_strategy': ['U.S. mail notifications to affected '
'individuals',
'dedicated hotline (833-647-1407)',
'privacy email '
'(Privacy.Records@harborrc.org)',
'website notification'],
'containment_measures': ['password reset for compromised email '
'account'],
'incident_response_plan_activated': True,
'recovery_measures': ['complimentary credit monitoring services '
'for affected individuals'],
'third_party_assistance': ['forensic experts (unspecified)']},
'threat_actor': 'unknown',
'title': 'Harbor Regional Center Email Account Data Breach (2025)',
'type': ['data breach', 'unauthorized access']}