The California Office of the Attorney General reported a data breach involving the University of California San Francisco (UCSF) on November 21, 2013. The breach occurred on September 25, 2013, when an unencrypted personal laptop containing identifiable health information was stolen from a physician's locked vehicle. The stolen laptop contained sensitive health information, which could potentially compromise the privacy and security of the affected individuals.
Source: https://oag.ca.gov/ecrime/databreach/reports/sb24-43352
TPRM report: https://www.rankiteo.com/company/ucsfhealth
"id": "ucs212072625",
"linkid": "ucsfhealth",
"type": "Breach",
"date": "9/2013",
"severity": "60",
"impact": "3",
"explanation": "Attack with significant impact with internal employee data leaks"
{'affected_entities': [{'industry': 'Healthcare',
'location': 'San Francisco, California',
'name': 'University of California San Francisco (UCSF)',
'type': 'Educational Institution'}],
'attack_vector': 'Physical Theft',
'data_breach': {'data_encryption': 'No',
'personally_identifiable_information': 'Yes',
'sensitivity_of_data': 'High',
'type_of_data_compromised': 'Identifiable Health Information'},
'date_detected': '2013-09-25',
'date_publicly_disclosed': '2013-11-21',
'description': 'A data breach occurred when an unencrypted personal laptop '
'containing identifiable health information was stolen from a '
"physician's locked vehicle.",
'impact': {'data_compromised': 'Identifiable Health Information',
'systems_affected': 'Personal Laptop'},
'motivation': 'Unknown',
'references': [{'source': 'California Office of the Attorney General'}],
'threat_actor': 'Unknown',
'title': 'Data Breach at University of California San Francisco (UCSF)',
'type': 'Data Breach',
'vulnerability_exploited': 'Unencrypted Data'}