{"id":4069,"date":"2024-06-17T14:39:10","date_gmt":"2024-06-17T19:39:10","guid":{"rendered":"https:\/\/www.darkreading.com\/remote-workforce\/la-county-dept-of-public-health-data-breach-impacts-200k"},"modified":"2024-06-17T14:39:10","modified_gmt":"2024-06-17T19:39:10","slug":"la-county-dept-of-public-health-data-breach-impacts-200k","status":"publish","type":"post","link":"https:\/\/ddi.mohflo.net\/index.php\/2024\/06\/17\/la-county-dept-of-public-health-data-breach-impacts-200k\/","title":{"rendered":"LA County Dept. of Public Health Data Breach Impacts 200K"},"content":{"rendered":"<div class=\"media_block\"><a href=\"https:\/\/i0.wp.com\/eu-images.contentstack.com\/v3\/assets\/blt6d90778a997de1cd\/blte141d6e0d272cce6\/664d177bfde66321aabc6dce\/Phishing%281800%29_Andrea_Danti_Alamy.jpg?ssl=1\"><img data-recalc-dims=\"1\" decoding=\"async\" src=\"https:\/\/i0.wp.com\/ddi.mohflo.net\/wp-content\/uploads\/2024\/06\/la-county-dept-of-public-health-data-breach-impacts-200k.jpg?w=640&#038;ssl=1\" class=\"media_thumbnail\"><\/a><\/div>\n<div><img data-recalc-dims=\"1\" decoding=\"async\" src=\"https:\/\/i0.wp.com\/ddi.mohflo.net\/wp-content\/uploads\/2024\/06\/la-county-dept-of-public-health-data-breach-impacts-200k.jpg?w=640&#038;ssl=1\" class=\"ff-og-image-inserted\"><\/div>\n<p class=\"ContentParagraph ContentParagraph_align_left\" data-testid=\"content-paragraph\"><span class=\"ContentText ContentText_variant_bodyNormal\" data-testid=\"content-text\">The Los Angeles County Department of Public Health has announced that it experienced a phishing attack between Feb. 19 and 20, in which a threat actor accessed the credentials of 53 public health employees.<\/span><\/p>\n<p class=\"ContentParagraph ContentParagraph_align_left\" data-testid=\"content-paragraph\"><span class=\"ContentText ContentText_variant_bodyNormal\" data-testid=\"content-text\">The credentials were obtained through a phishing email that ultimately allowed the threat actor to compromise the personal information of more than 200,000 people.&nbsp;<\/span><\/p>\n<p class=\"ContentParagraph ContentParagraph_align_left\" data-testid=\"content-paragraph\"><span class=\"ContentText ContentText_variant_bodyNormal\" data-testid=\"content-text\">&#8220;The first domino to fall is very often the well-meaning employee trying to be helpful, but falling into the criminal&#8217;s trap,&#8221; Dror Liwer, co-founder of cybersecurity company Coro, wrote in an emailed statement to Dark Reading.&nbsp;&#8220;Older anti-phishing tools, or those embedded into the email platforms, are simply not designed to deal with sophisticated, well executed <\/span><span class=\"ContentText ContentText_variant_bodyNormal\" data-testid=\"content-text\"><a class=\"ContentText-BodyTextChunk ContentText-BodyTextChunk_link\" target=\"_blank\" href=\"https:\/\/www.darkreading.com\/threat-intelligence\/tax-cons-targeting-small-business-with-phishing-emails\" rel=\"noopener\">phishing attacks<\/a><\/span><span class=\"ContentText ContentText_variant_bodyNormal\" data-testid=\"content-text\">.&#8221;<\/span><\/p>\n<p class=\"ContentParagraph ContentParagraph_align_left\" data-testid=\"content-paragraph\"><span class=\"ContentText ContentText_variant_bodyNormal\" data-testid=\"content-text\">After discovering the attack, the department disabled all affected email accounts, reset and reimaged user devices, and blocked websites that it identified as being part of the phishing campaign.&nbsp;<\/span><\/p>\n<p class=\"ContentParagraph ContentParagraph_align_left\" data-testid=\"content-paragraph\"><span class=\"ContentText ContentText_variant_bodyNormal\" data-testid=\"content-text\">Once law enforcement was notified, an investigation was launched where the <\/span><span class=\"ContentText ContentText_variant_bodyNormal\" data-testid=\"content-text\"><a class=\"ContentText-BodyTextChunk ContentText-BodyTextChunk_link\" target=\"_blank\" href=\"https:\/\/www.darkreading.com\/cybersecurity-operations\/us-pumps-50m-into-better-healthcare-cyber-resilience\" rel=\"noopener\">public health department<\/a><\/span><span class=\"ContentText ContentText_variant_bodyNormal\" data-testid=\"content-text\"> found that the compromised email accounts may have included sensitive information, including names, date of birth, diagnosis, prescription, medical record numbers\/patient ID, Medicare de, Med-Cal number, health insurance information, Social Security number, and financial information.&nbsp;<\/span><\/p>\n<p class=\"ContentParagraph ContentParagraph_align_left\" data-testid=\"content-paragraph\"><span class=\"ContentText ContentText_variant_bodyNormal\" data-testid=\"content-text\">&#8220;While Public Health cannot confirm whether information has been accessed or misused, individuals are encouraged to review the content and accuracy of the information in their medical record with their medical provider,&#8221; <\/span><span class=\"ContentText ContentText_variant_bodyNormal\" data-testid=\"content-text\"><a class=\"ContentText-BodyTextChunk ContentText-BodyTextChunk_link\" target=\"_blank\" href=\"http:\/\/publichealth.lacounty.gov\/phcommon\/public\/media\/mediapubhpdetail.cfm?prid=4732\" rel=\"noopener\">stated the department&#8217;s press release<\/a><\/span><span class=\"ContentText ContentText_variant_bodyNormal\" data-testid=\"content-text\">, which added that Public Health is providing affected individuals with one year of Kroll, an identity monitoring service.<\/span><\/p>\n<p class=\"ContentParagraph ContentParagraph_align_left\" data-testid=\"content-paragraph\"><span class=\"ContentText ContentText_variant_bodyNormal\" data-testid=\"content-text\">Individuals who have been impacted will be notified by mail, and individuals who would like to know if they have been impacted can call 1-866-898-4312, from 6 a.m. to 5 p.m. Pacific time.<\/span><\/p>\n<p><a href=\"https:\/\/www.darkreading.com\/remote-workforce\/la-county-dept-of-public-health-data-breach-impacts-200k\">Source<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>The Los Angeles County Department of Public Health has announced<\/p>\n","protected":false},"author":12,"featured_media":4070,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_jetpack_memberships_contains_paid_content":false,"footnotes":""},"categories":[1],"tags":[809],"class_list":["post-4069","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-uncategorized","tag-dark-reading"],"featured_image_urls":{"full":["https:\/\/i0.wp.com\/ddi.mohflo.net\/wp-content\/uploads\/2024\/06\/la-county-dept-of-public-health-data-breach-impacts-200k.jpg?fit=1809%2C1057&ssl=1",1809,1057,false],"thumbnail":["https:\/\/i0.wp.com\/ddi.mohflo.net\/wp-content\/uploads\/2024\/06\/la-county-dept-of-public-health-data-breach-impacts-200k.jpg?resize=150%2C150&ssl=1",150,150,true],"medium":["https:\/\/i0.wp.com\/ddi.mohflo.net\/wp-content\/uploads\/2024\/06\/la-county-dept-of-public-health-data-breach-impacts-200k.jpg?fit=300%2C175&ssl=1",300,175,true],"medium_large":["https:\/\/i0.wp.com\/ddi.mohflo.net\/wp-content\/uploads\/2024\/06\/la-county-dept-of-public-health-data-breach-impacts-200k.jpg?fit=640%2C374&ssl=1",640,374,true],"large":["https:\/\/i0.wp.com\/ddi.mohflo.net\/wp-content\/uploads\/2024\/06\/la-county-dept-of-public-health-data-breach-impacts-200k.jpg?fit=640%2C374&ssl=1",640,374,true],"1536x1536":["https:\/\/i0.wp.com\/ddi.mohflo.net\/wp-content\/uploads\/2024\/06\/la-county-dept-of-public-health-data-breach-impacts-200k.jpg?fit=1536%2C897&ssl=1",1536,897,true],"2048x2048":["https:\/\/i0.wp.com\/ddi.mohflo.net\/wp-content\/uploads\/2024\/06\/la-county-dept-of-public-health-data-breach-impacts-200k.jpg?fit=1809%2C1057&ssl=1",1809,1057,true],"chromenews-featured":["https:\/\/i0.wp.com\/ddi.mohflo.net\/wp-content\/uploads\/2024\/06\/la-county-dept-of-public-health-data-breach-impacts-200k.jpg?fit=1024%2C598&ssl=1",1024,598,true],"chromenews-large":["https:\/\/i0.wp.com\/ddi.mohflo.net\/wp-content\/uploads\/2024\/06\/la-county-dept-of-public-health-data-breach-impacts-200k.jpg?resize=825%2C575&ssl=1",825,575,true],"chromenews-medium":["https:\/\/i0.wp.com\/ddi.mohflo.net\/wp-content\/uploads\/2024\/06\/la-county-dept-of-public-health-data-breach-impacts-200k.jpg?resize=590%2C410&ssl=1",590,410,true]},"author_info":{"display_name":"Dark Reading","author_link":"https:\/\/ddi.mohflo.net\/index.php\/author\/darkreading\/"},"category_info":"<a href=\"https:\/\/ddi.mohflo.net\/index.php\/category\/uncategorized\/\" rel=\"category tag\">Uncategorized<\/a>","tag_info":"Uncategorized","comment_count":"0","jetpack_featured_media_url":"https:\/\/i0.wp.com\/ddi.mohflo.net\/wp-content\/uploads\/2024\/06\/la-county-dept-of-public-health-data-breach-impacts-200k.jpg?fit=1809%2C1057&ssl=1","jetpack_sharing_enabled":true,"_links":{"self":[{"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/posts\/4069","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/users\/12"}],"replies":[{"embeddable":true,"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/comments?post=4069"}],"version-history":[{"count":0,"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/posts\/4069\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/media\/4070"}],"wp:attachment":[{"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/media?parent=4069"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/categories?post=4069"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/tags?post=4069"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}