Description

As per sources, Planned Parenthood Los Angeles (PPLA) notified its patients of a data breach that happened between October 9th and 17th, allowing threat actors to extract files from the compromised network, exposing approximately 400,000 patients' personal information. On October 17, 2021, suspicious behavior on the computer network was discovered. PPLA appears to have taken the systems offline immediately, notified law enforcement, and recruited a third-party cybersecurity firm to assist in the investigation. According to the stolen files, patients' personal information was taken, including their address, insurance information, date of birth, and clinical information, such as diagnosis, treatment, and/or prescription information. It is unknown which ransomware gang was responsible for the attack or whether a ransom was paid. Since the stolen data is said to contain medical information, including procedures conducted at PPLA, the material's public release might have a significant impact on people affected.