The California Office of the Attorney General reported a data breach involving Pacific Pulmonary Medical Group on January 3, 2025. The breach occurred between October 21 and October 22, 2024, after a compromise to an employee’s credentials for third-party software, potentially affecting personal information of approximately Rhode Island residents, although the exact number is unspecified.
Source: https://oag.ca.gov/ecrime/databreach/reports/sb24-596931
TPRM report: https://www.rankiteo.com/company/pacific-pulmonary-medical-group
"id": "pac027072825",
"linkid": "pacific-pulmonary-medical-group",
"type": "Breach",
"date": "10/2024",
"severity": "60",
"impact": "3",
"explanation": "Attack with significant impact with internal employee data leaks"{'affected_entities': [{'customers_affected': 'Approximately Rhode Island '
'residents',
'industry': 'Healthcare',
'location': 'California',
'name': 'Pacific Pulmonary Medical Group',
'type': 'Medical Group'}],
'attack_vector': 'Compromised Credentials',
'data_breach': {'number_of_records_exposed': 'Approximately Rhode Island '
'residents',
'type_of_data_compromised': 'Personal Information'},
'date_detected': '2025-01-03',
'date_publicly_disclosed': '2025-01-03',
'description': 'The California Office of the Attorney General reported a data '
'breach involving Pacific Pulmonary Medical Group on January '
'3, 2025. The breach occurred between October 21 and October '
'22, 2024, after a compromise to an employee’s credentials for '
'third-party software, potentially affecting personal '
'information of approximately Rhode Island residents, although '
'the exact number is unspecified.',
'impact': {'data_compromised': 'Personal Information'},
'initial_access_broker': {'entry_point': 'Third-party software'},
'references': [{'date_accessed': '2025-01-03',
'source': 'California Office of the Attorney General'}],
'title': 'Data Breach at Pacific Pulmonary Medical Group',
'type': 'Data Breach',
'vulnerability_exploited': 'Employee Credentials'}