OneTouchPoint

The California Office of the Attorney General reported a data breach involving OneTouchPoint (OTP), occurring on April 28, 2022, with prior indications of a cybersecurity incident dating back to April 27, 2022. The breach potentially exposed personal information, including names, addresses, member IDs, age, gender, vital signs, diagnoses, medications, allergies, health screenings, immunizations, and plan names, although Social Security numbers and financial information were not impacted. The total number of individuals affected is currently unknown.

Source: https://oag.ca.gov/ecrime/databreach/reports/sb24-555811

TPRM report: https://www.rankiteo.com/company/onetouchpoint

"id": "one218072725",
"linkid": "onetouchpoint",
"type": "Breach",
"date": "4/2022",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"

{'affected_entities': [{'name': 'OneTouchPoint', 'type': 'Company'}],
 'data_breach': {'personally_identifiable_information': True,
                 'sensitivity_of_data': 'High',
                 'type_of_data_compromised': ['names',
                                              'addresses',
                                              'member IDs',
                                              'age',
                                              'gender',
                                              'vital signs',
                                              'diagnoses',
                                              'medications',
                                              'allergies',
                                              'health screenings',
                                              'immunizations',
                                              'plan names']},
 'date_detected': '2022-04-27',
 'date_publicly_disclosed': '2022-04-28',
 'description': 'The California Office of the Attorney General reported a data '
                'breach involving OneTouchPoint (OTP), occurring on April 28, '
                '2022, with prior indications of a cybersecurity incident '
                'dating back to April 27, 2022. The breach potentially exposed '
                'personal information, including names, addresses, member IDs, '
                'age, gender, vital signs, diagnoses, medications, allergies, '
                'health screenings, immunizations, and plan names, although '
                'Social Security numbers and financial information were not '
                'impacted. The total number of individuals affected is '
                'currently unknown.',
 'impact': {'data_compromised': ['names',
                                 'addresses',
                                 'member IDs',
                                 'age',
                                 'gender',
                                 'vital signs',
                                 'diagnoses',
                                 'medications',
                                 'allergies',
                                 'health screenings',
                                 'immunizations',
                                 'plan names']},
 'references': [{'source': 'California Office of the Attorney General'}],
 'title': 'OneTouchPoint Data Breach',
 'type': 'Data Breach'}