The San Francisco Department of Public Health (SFDPH) reported a data breach on May 11, 2018, involving unauthorized access to patient reports from a third-party vendor, Nuance Communications, Inc. The breach occurred between November 20, 2017, and December 9, 2017, potentially affecting personal information such as names, dates of birth, and medical record details, but not including social security numbers. The exact number of individuals affected is unknown.
Source: https://oag.ca.gov/ecrime/databreach/reports/sb24-136120
TPRM report: https://www.rankiteo.com/company/san-francisco-department-of-public-health
"id": "san548072625",
"linkid": "san-francisco-department-of-public-health",
"type": "Breach",
"date": "11/2017",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"{'affected_entities': [{'industry': 'Healthcare',
'location': 'San Francisco, CA',
'name': 'San Francisco Department of Public Health',
'type': 'Government'}],
'attack_vector': 'Unauthorized Access',
'data_breach': {'personally_identifiable_information': True,
'sensitivity_of_data': 'High',
'type_of_data_compromised': ['names',
'dates of birth',
'medical record details']},
'date_detected': '2018-05-11',
'date_publicly_disclosed': '2018-05-11',
'description': 'Unauthorized access to patient reports from a third-party '
'vendor, Nuance Communications, Inc., affecting personal '
'information such as names, dates of birth, and medical record '
'details.',
'impact': {'data_compromised': ['names',
'dates of birth',
'medical record details']},
'references': [{'source': 'San Francisco Department of Public Health'}],
'title': 'SFDPH Data Breach',
'type': 'Data Breach'}