The California Office of the Attorney General reported on July 15, 2022, that Kaiser Permanente experienced a data breach on May 20, 2022, involving the theft of an iPad from a medical center. The breach potentially affected individuals' first names, last names, medical record numbers, dates of birth, and service dates. The breach response included notifying law enforcement and remotely erasing the iPad's data.
Source: https://oag.ca.gov/ecrime/databreach/reports/sb24-555311
TPRM report: https://www.rankiteo.com/company/kaiser-permanente
"id": "kai703072925",
"linkid": "kaiser-permanente",
"type": "Breach",
"date": "5/2022",
"severity": "60",
"impact": "3",
"explanation": "Attack with significant impact with internal employee data leaks"{'affected_entities': [{'industry': 'Healthcare',
'location': 'California',
'name': 'Kaiser Permanente',
'type': 'Healthcare Provider'}],
'attack_vector': 'Theft of Device',
'data_breach': {'personally_identifiable_information': True,
'sensitivity_of_data': 'High',
'type_of_data_compromised': ['Personally Identifiable '
'Information']},
'date_detected': '2022-05-20',
'date_publicly_disclosed': '2022-07-15',
'description': 'The California Office of the Attorney General reported on '
'July 15, 2022, that Kaiser Permanente experienced a data '
'breach on May 20, 2022, involving the theft of an iPad from a '
"medical center, potentially affecting individuals' first "
'names, last names, medical record numbers, dates of birth, '
'and service dates. The breach response included notifying law '
"enforcement and remotely erasing the iPad's data.",
'impact': {'data_compromised': ['first names',
'last names',
'medical record numbers',
'dates of birth',
'service dates']},
'references': [{'date_accessed': '2022-07-15',
'source': 'California Office of the Attorney General'}],
'response': {'containment_measures': ["remotely erasing the iPad's data"],
'law_enforcement_notified': True},
'title': 'Kaiser Permanente Data Breach',
'type': 'Data Breach'}