LA County Department of Health Services reports data breach exposing patient data
Learn More
The Los Angeles County Department of Health Services (DHS) reports a significant data breach affecting thousands of patients, caused by a phishing attack. The incident occurred on February 19 and 20, 2024 and led to the compromise of 23 DHS employee credentials.
The types of patient information potentially exposed in this breach include:
- First and last names
- Dates of birth
- Home addresses
- Phone numbers
- Email addresses
- Medical record numbers
- Client identification numbers
- Dates of service
- Medical details (such as diagnoses, treatments, test results, and medications)
- Health plan information
No details are disclosed about the number of affected individuals, apart from being multiple thousand.
The DHS claims that Social Security Numbers and financial information were not affected in this breach. They delayed public notification on law enforcement's advice to avoid interfering with the ongoing investigation.
DHS plans to notify all affected individuals and the appropriate regulatory bodies.
