On March 4, 2021, the California Office of the Attorney General reported a data breach at Saint Alphonsus Health System. The breach involved unauthorized access to an employee email account that may have occurred between January 4, 2021, and January 6, 2021, potentially exposing various personal and medical information of affected individuals.
Source: https://oag.ca.gov/ecrime/databreach/reports/sb24-538900
TPRM report: https://www.rankiteo.com/company/saint-alphonsus-health-system
"id": "sai656072625",
"linkid": "saint-alphonsus-health-system",
"type": "Breach",
"date": "1/2021",
"severity": "60",
"impact": "3",
"explanation": "Attack with significant impact with internal employee data leaks"{'affected_entities': [{'industry': 'Healthcare',
'location': 'California',
'name': 'Saint Alphonsus Health System',
'type': 'Healthcare Provider'}],
'attack_vector': 'Email Compromise',
'data_breach': {'personally_identifiable_information': True,
'sensitivity_of_data': 'High',
'type_of_data_compromised': ['Personal Information',
'Medical Information']},
'date_detected': '2021-03-04',
'date_publicly_disclosed': '2021-03-04',
'description': 'Unauthorized access to an employee email account potentially '
'exposing personal and medical information.',
'impact': {'data_compromised': ['Personal Information', 'Medical Information'],
'systems_affected': ['Employee Email Account']},
'initial_access_broker': {'entry_point': 'Employee Email Account'},
'references': [{'date_accessed': '2021-03-04',
'source': 'California Office of the Attorney General'}],
'title': 'Data Breach at Saint Alphonsus Health System',
'type': 'Data Breach',
'vulnerability_exploited': 'Unauthorized Access'}