On April 21, the Los Angeles County Department of Mental Health disclosed that it had suffered a data breach in a phishing incident. Unauthorized access occurred between October 19 to October 21, 2021.
On April 20, LACDMH uploaded a template of its notification letter to the California Attorney General’s Office. That template indicated that the type of information that may have been affected included “name, address, date of birth, driver’s license, Social Security number, medical and/or health information, health insurance information, SSID student identifier, and/or financial account number.”
The number of people being notified was not included in the notification, and the incident is not yet up on HHS’s public breach tool. The press release posted on the county’s website is embedded below.1123279_DataBreachPressRelease042122FINAL