Oregon’s worker’s compensation insurer, SAIF Corp. suffered a data breach incident that compromised policyholders’ information and workers’ compensation claimants’ personal and medical information.
The compromised data included Social Security numbers, financial account numbers, and medical information about employees of policyholders and for claimants included Social Security numbers, driver’s license numbers, financial account numbers, health insurance policy numbers, and medical history information.
The company immediately moved to all electronic files and, as part of this, scanned older paper files
TPRM report: https://scoringcyber.rankiteo.com/company/saif-corporation
"id": "sai221710123",
"linkid": "saif-corporation",
"type": "Data Leak",
"date": "10/2022",
"severity": "85",
"impact": "3",
"explanation": "Attack with significant impact with internal employee data leaks"
{'affected_entities': [{'industry': 'Insurance',
'location': 'Oregon',
'name': 'SAIF Corp.',
'type': 'Organization'}],
'data_breach': {'personally_identifiable_information': True,
'sensitivity_of_data': 'High',
'type_of_data_compromised': ['Social Security numbers',
'financial account numbers',
'medical information about '
'employees of policyholders',
'Social Security numbers',
'driver’s license numbers',
'financial account numbers',
'health insurance policy numbers',
'medical history information']},
'description': 'Oregon’s worker’s compensation insurer, SAIF Corp. suffered a '
'data breach incident that compromised policyholders’ '
'information and workers’ compensation claimants’ personal and '
'medical information.',
'impact': {'data_compromised': ['Social Security numbers',
'financial account numbers',
'medical information about employees of '
'policyholders',
'Social Security numbers',
'driver’s license numbers',
'financial account numbers',
'health insurance policy numbers',
'medical history information']},
'title': 'Data Breach at SAIF Corp.',
'type': 'Data Breach'}