The California Office of the Attorney General reported a data breach involving Nevro Corporation on January 29, 2018. The breach occurred on November 11, 2017, due to a criminal break-in that resulted in the theft of laptops containing limited patient information, including names and addresses; however, no sensitive information like Social Security numbers was compromised and the number of affected individuals is not specified.
Source: https://oag.ca.gov/ecrime/databreach/reports/sb24-133229
TPRM report: https://www.rankiteo.com/company/nevro-hfx
"id": "nev515072725",
"linkid": "nevro-hfx",
"type": "Breach",
"date": "11/2017",
"severity": "25",
"impact": "1",
"explanation": "Attack without any consequences"{'affected_entities': [{'industry': 'Healthcare',
'location': 'California',
'name': 'Nevro Corporation',
'type': 'Company'}],
'attack_vector': 'Physical Theft',
'data_breach': {'personally_identifiable_information': ['Names', 'Addresses'],
'sensitivity_of_data': 'Low',
'type_of_data_compromised': ['Names', 'Addresses']},
'date_detected': '2017-11-11',
'date_publicly_disclosed': '2018-01-29',
'description': 'The California Office of the Attorney General reported a data '
'breach involving Nevro Corporation on January 29, 2018. The '
'breach occurred on November 11, 2017, due to a criminal '
'break-in that resulted in the theft of laptops containing '
'limited patient information, including names and addresses; '
'however, no sensitive information like Social Security '
'numbers was compromised and the number of affected '
'individuals is not specified.',
'impact': {'data_compromised': ['Names', 'Addresses'],
'systems_affected': ['Laptops']},
'motivation': 'Theft',
'references': [{'date_accessed': '2018-01-29',
'source': 'California Office of the Attorney General'}],
'threat_actor': 'Unknown Criminal',
'title': 'Data Breach at Nevro Corporation',
'type': 'Data Breach',
'vulnerability_exploited': 'Physical Security'}