Emergency Medical Services Authority (EMSA)

EMSA experienced a significant cybersecurity breach between February 10 and 13, 2024, leading to unauthorized access and acquisition of patient files. Potentially compromised data includes names, addresses, dates of birth, service dates, primary care providers, and Social Security numbers for some individuals. The breach, affecting 611,743 patients, disrupted EMSA's ability to provide services. In response, EMSA has committed to strengthening their system safeguards and offers credit monitoring and identity protection to victims whose Social Security numbers were exposed.

Source: https://www.hcinnovationgroup.com/cybersecurity/data-breaches/news/55001570/security-breach-leaves-patient-data-vulnerable

TPRM report: https://scoringcyber.rankiteo.com/company/state-of-california-emergency-medical-services-authority

"id": "sta001090124",
"linkid": "state-of-california-emergency-medical-services-authority",
"type": "Cyber Attack",
"date": "4/2024",
"severity": "100",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"

{'affected_entities': [{'customers_affected': 611743,
                        'industry': 'Healthcare',
                        'name': 'EMSA',
                        'type': 'Healthcare Provider'}],
 'data_breach': {'number_of_records_exposed': 611743,
                 'personally_identifiable_information': ['names',
                                                         'addresses',
                                                         'dates of birth',
                                                         'Social Security '
                                                         'numbers'],
                 'sensitivity_of_data': 'high',
                 'type_of_data_compromised': ['names',
                                              'addresses',
                                              'dates of birth',
                                              'service dates',
                                              'primary care providers',
                                              'Social Security numbers']},
 'date_detected': '2024-02-10',
 'description': 'EMSA experienced a significant cybersecurity breach between '
                'February 10 and 13, 2024, leading to unauthorized access and '
                'acquisition of patient files. Potentially compromised data '
                'includes names, addresses, dates of birth, service dates, '
                'primary care providers, and Social Security numbers for some '
                'individuals. The breach, affecting 611,743 patients, '
                "disrupted EMSA's ability to provide services. In response, "
                'EMSA has committed to strengthening their system safeguards '
                'and offers credit monitoring and identity protection to '
                'victims whose Social Security numbers were exposed.',
 'impact': {'data_compromised': ['names',
                                 'addresses',
                                 'dates of birth',
                                 'service dates',
                                 'primary care providers',
                                 'Social Security numbers'],
            'operational_impact': "disrupted EMSA's ability to provide "
                                  'services'},
 'recommendations': ['strengthening their system safeguards',
                     'offers credit monitoring and identity protection to '
                     'victims'],
 'response': {'remediation_measures': 'strengthening their system safeguards'},
 'title': 'EMSA Patient Data Breach',
 'type': 'Data Breach'}