Discovery Practice Management, Inc.

The California Office of the Attorney General disclosed a data breach affecting Discovery Practice Management, Inc. in July 2021. The incident occurred between June 22 and June 26, 2020, when unauthorized actors gained access to staff email accounts. The compromised data may include sensitive personal information such as individuals' names, addresses, dates of birth, and potentially other undisclosed details. The exact number of affected individuals remains unknown, raising concerns about the scope of exposure. The breach highlights vulnerabilities in email security protocols, potentially enabling attackers to exploit confidential employee and client data. While the full extent of the damage is undetermined, the exposure of personally identifiable information (PII) poses risks of identity theft, phishing, or further targeted cyberattacks. The company has not provided details on whether the breach was part of a broader cyberattack, ransomware incident, or an isolated vulnerability exploitation.

Source: https://oag.ca.gov/ecrime/databreach/reports/sb24-542513

TPRM report: https://www.rankiteo.com/company/llminc

"id": "llm739082025",
"linkid": "llminc",
"type": "Breach",
"date": "6/2020",
"severity": "60",
"impact": "3",
"explanation": "Attack with significant impact with internal employee data leaks"

{'affected_entities': [{'customers_affected': 'Unknown',
                        'location': 'California, USA',
                        'name': 'Discovery Practice Management, Inc.',
                        'type': 'Organization'}],
 'attack_vector': 'Unauthorized Access (Email Accounts)',
 'data_breach': {'number_of_records_exposed': 'Unknown',
                 'personally_identifiable_information': ['Names',
                                                         'Addresses',
                                                         'Dates of Birth'],
                 'sensitivity_of_data': 'High',
                 'type_of_data_compromised': ['Personally Identifiable '
                                              'Information (PII)']},
 'date_publicly_disclosed': '2021-07-01',
 'description': 'The California Office of the Attorney General reported a data '
                'breach involving Discovery Practice Management, Inc. on July '
                '1, 2021. The breach occurred between June 22 and June 26, '
                '2020, involving unauthorized access to staff email accounts, '
                "potentially affecting individuals' names, addresses, dates of "
                'birth, and more.',
 'impact': {'data_compromised': ['Names', 'Addresses', 'Dates of Birth'],
            'identity_theft_risk': 'Potential',
            'systems_affected': ['Staff Email Accounts']},
 'references': [{'source': 'California Office of the Attorney General'}],
 'regulatory_compliance': {'regulatory_notifications': ['California Office of '
                                                        'the Attorney '
                                                        'General']},
 'title': 'Data Breach at Discovery Practice Management, Inc.',
 'type': 'Data Breach'}

Discovery Practice Management, Inc.

Grafana: Grafana GitHub Token Breach Led to Codebase Download and Extortion Attempt

Reqrea: Millions Of Hotel Guests' IDs Left Open Online In Massive Security Blunder

THORChain: More than $10 million stolen from crypto platform THORChain