• Home
  • Breach
  • Los Angeles County Department of Mental Health
Breach cyber

Los Angeles County Department of Mental Health

May 27, 2024 1 min read
Los Angeles County Department of Mental Health

On August 30, 2024, the California Office of the Attorney General reported a data breach involving the Los Angeles County Department of Mental Health. The breach occurred on May 28, 2024, due to a phishing attack that compromised Microsoft Office 365 accounts of three employees, potentially exposing personal information of individuals, including names, dates of birth, social security numbers, and medical-related information. The number of affected individuals is UNKN.

Source: https://oag.ca.gov/ecrime/databreach/reports/sb24-591079

TPRM report: https://www.rankiteo.com/company/lacdmh

"id": "lac313072725",
"linkid": "lacdmh",
"type": "Breach",
"date": "5/2024",
"severity": "60",
"impact": "3",
"explanation": "Attack with significant impact with internal employee data leaks"
{'affected_entities': [{'customers_affected': 'UNKN',
                        'industry': 'Healthcare',
                        'location': 'Los Angeles, California',
                        'name': 'Los Angeles County Department of Mental '
                                'Health',
                        'type': 'Government'}],
 'attack_vector': 'Phishing',
 'data_breach': {'number_of_records_exposed': 'UNKN',
                 'personally_identifiable_information': True,
                 'sensitivity_of_data': 'High',
                 'type_of_data_compromised': ['names',
                                              'dates of birth',
                                              'social security numbers',
                                              'medical-related information']},
 'date_detected': '2024-05-28',
 'date_publicly_disclosed': '2024-08-30',
 'description': 'A data breach occurred due to a phishing attack that '
                'compromised Microsoft Office 365 accounts of three employees, '
                'potentially exposing personal information of individuals.',
 'impact': {'data_compromised': ['names',
                                 'dates of birth',
                                 'social security numbers',
                                 'medical-related information']},
 'initial_access_broker': {'entry_point': 'Phishing email'},
 'post_incident_analysis': {'root_causes': 'Phishing attack compromising '
                                           'Microsoft Office 365 accounts'},
 'references': [{'date_accessed': '2024-08-30',
                 'source': 'California Office of the Attorney General'}],
 'title': 'Data Breach at Los Angeles County Department of Mental Health',
 'type': 'Data Breach',
 'vulnerability_exploited': 'Compromised Microsoft Office 365 accounts'}
Published by
Jeremy C
Jeremy C
You might also like
Great! Next, complete checkout for full access to Rankiteo Blog.
Welcome back! You've successfully signed in.
You've successfully subscribed to Rankiteo Blog.
Success! Your account is fully activated, you now have access to all content.
Success! Your billing info has been updated.
Your billing was not updated.