Wolfe Clinic, P.C.

On February 8, 2021, Wolfe Clinic, P.C. suffered a data breach involving unauthorized access to sensitive personal and medical information. The compromised data included patient names, mailing addresses, dates of birth, Social Security numbers, and protected medical records. While the breach exposed highly confidential information, the investigation did not uncover any evidence of identity theft or misuse of the stolen data at the time of reporting. The California Office of the Attorney General publicly disclosed the incident on June 29, 2021, highlighting the clinic’s failure to prevent unauthorized access to its systems. The breach raised concerns about patient privacy and the security of healthcare data, though no immediate financial or operational consequences were reported beyond the exposure itself.

Source: https://oag.ca.gov/ecrime/databreach/reports/sb24-542359

TPRM report: https://www.rankiteo.com/company/wolfe-eye-clinic

"id": "wol132082125",
"linkid": "wolfe-eye-clinic",
"type": "Breach",
"date": "2/2021",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"

{'affected_entities': [{'industry': 'Healthcare',
                        'location': 'California, USA',
                        'name': 'Wolfe Clinic, P.C.',
                        'type': 'Healthcare Provider'}],
 'data_breach': {'personally_identifiable_information': True,
                 'sensitivity_of_data': 'High (includes SSNs and PHI)',
                 'type_of_data_compromised': ['Personal Information',
                                              'Protected Health Information '
                                              '(PHI)']},
 'date_detected': '2021-02-08',
 'date_publicly_disclosed': '2021-06-29',
 'description': 'The California Office of the Attorney General reported that '
                'Wolfe Clinic, P.C. experienced a data breach involving '
                'unauthorized access to personal information, including names, '
                'mailing addresses, dates of birth, Social Security numbers, '
                'and protected medical information. The investigation '
                'confirmed these data points may have been compromised, but '
                'there were no reports of related identity theft.',
 'impact': {'data_compromised': ['Names',
                                 'Mailing addresses',
                                 'Dates of birth',
                                 'Social Security numbers',
                                 'Protected medical information'],
            'identity_theft_risk': 'No reports of identity theft'},
 'investigation_status': 'Completed (no identity theft reported)',
 'references': [{'date_accessed': '2021-06-29',
                 'source': 'California Office of the Attorney General'}],
 'regulatory_compliance': {'regulations_violated': ['Potential HIPAA violation '
                                                    '(unauthorized PHI access)',
                                                    'California Consumer '
                                                    'Privacy Act (CCPA) '
                                                    'notification '
                                                    'requirements'],
                           'regulatory_notifications': ['California Office of '
                                                        'the Attorney '
                                                        'General']},
 'title': 'Wolfe Clinic, P.C. Data Breach (2021)',
 'type': 'Data Breach'}