Cyber Incident Victim: Pinnacle Claims Management
Date:
Jun 2022
Location:
United States of America
Summary
Pinnacle Claims Management experienced a data breach involving unauthorized access to its computer systems, potentially compromising sensitive consumer information including protected health details and Social Security numbers. The company detected the intrusion, secured its network, and engaged cybersecurity experts to investigate, confirming unauthorized access to files containing personal data. After completing a review of affected records, notifications were sent to impacted individuals advising protective measures against identity theft and fraud. The health insurance administrator, serving government and private sector clients, initiated this response following the discovery of system anomalies.
| CIA Posture | Motives | Tactics, Techniques & Procedures |
|---|---|---|
| Available to members | 1 motive | 1 technique |
| Threat Actors | Type | Location |
|---|---|---|
| 0 actors | Available to members | Available to members |
Description
On October 25, 2022, Pinnacle Claims Management, Inc. (PCMI) filed a data breach notification with the California Attorney General’s office following confirmation that an unauthorized party accessed files containing sensitive consumer information. The incident began when PCMI detected unusual activity within its computer systems on June 26, 2022, prompting immediate measures to secure the network. The company engaged a cybersecurity firm to investigate the breach, which confirmed unauthorized access to its systems and potential exposure of consumer data. PCMI conducted a review of the compromised files to identify impacted individuals and the nature of the exposed information, completing this process on September 28, 2022. While the company did not publicly specify the exact data types involved, its role as a health insurance benefits administrator suggests the breach likely involved protected health information and potentially Social Security numbers. PCMI initiated consumer notifications on October 25, 2022, through data breach letters advising affected individuals on protective measures against identity theft and fraud. The breach investigation revealed that the unauthorized actor accessed the network over a period preceding the June 26 detection date, though the exact duration of access remains undisclosed. No ransomware claims or explicit motive for the attack were reported in the Attorney General filing.
The breach impacted an undisclosed number of consumers whose sensitive data was stored on PCMI’s systems, with compromised information linked to the company’s services for government entities, manufacturing firms, and private employers. PCMI, headquartered in Irvine, California, operates additional locations across California and Arizona, employing over 174 staff and generating approximately $81 million in annual revenue. As a third-party health plan administrator, PCMI manages client health insurance benefits and provides administrative support, making health-related data a probable component of the exposed files. The company’s response included system containment, forensic analysis, and regulatory compliance through California’s data breach notification laws. No technical details regarding attack vectors, malware involvement, or data exfiltration methods were disclosed in the available filing. Affected individuals received guidance on fraud mitigation but were not offered specifics about remediation services such as credit monitoring in the initial notification. The incident marks PCMI’s first major publicly reported cybersecurity event since its establishment.