The California Office of the Attorney General reported a data breach involving the Center for Autism and Related Disorders on February 4, 2023. The breach occurred on January 24, 2023, due to a computer error in the patient billing system that resulted in caregivers receiving invoices meant for unrelated patients. The affected information included patient names, internal reference numbers, and payment history, impacting only January 2023 billing statements.
Source: https://oag.ca.gov/ecrime/databreach/reports/sb24-562735
TPRM report: https://www.rankiteo.com/company/the-center-for-autism-and-related-disorders-inc-card-
"id": "the534072725",
"linkid": "the-center-for-autism-and-related-disorders-inc-card-",
"type": "Breach",
"date": "1/2023",
"severity": "50",
"impact": "2",
"explanation": "Attack limited on finance or reputation"{'affected_entities': [{'industry': 'Healthcare',
'location': 'California',
'name': 'Center for Autism and Related Disorders',
'type': 'Healthcare Provider'}],
'attack_vector': 'Computer Error',
'data_breach': {'personally_identifiable_information': ['Patient names'],
'type_of_data_compromised': ['Patient names',
'Internal reference numbers',
'Payment history']},
'date_detected': '2023-01-24',
'date_publicly_disclosed': '2023-02-04',
'description': 'A data breach occurred due to a computer error in the patient '
'billing system, resulting in caregivers receiving invoices '
'meant for unrelated patients.',
'impact': {'data_compromised': ['Patient names',
'Internal reference numbers',
'Payment history'],
'systems_affected': ['Patient Billing System']},
'post_incident_analysis': {'root_causes': 'Computer error in the patient '
'billing system'},
'references': [{'date_accessed': '2023-02-04',
'source': 'California Office of the Attorney General'}],
'title': 'Data Breach at Center for Autism and Related Disorders',
'type': 'Data Breach',
'vulnerability_exploited': 'Patient Billing System'}