El Camino Health

El Camino Health operates as a healthcare provider within the United States. Its core function involves delivering medical services to patients, necessitating the handling and storage of sensitive personal health information. This includes managing patient names, medical record numbers, dates of birth, addresses, and physician details as part of its standard operations. The organization also processes specific medical imaging data related to patient care. Its primary market and service area appear focused on the United States, given its headquarters location and the nature of the incident reported.

The organization utilizes cybersecurity measures such as multi-factor authentication to protect its network and patient data. A significant incident in September 2021 highlighted vulnerabilities when an attacker reportedly bypassed these defenses through a phishing attack targeting an employee. This breach led to unauthorized network access over an extended period, the creation of a backdoor, and the alleged exfiltration of patient data. While claims surfaced regarding millions of records being stolen and listed on the dark web, El Camino Health's internal investigation, conducted with third-party experts, confirmed the compromise of medical imaging data belonging to 14 specific patients. The organization confirmed no ongoing compromise of its systems following the incident but acknowledged the full scope and origin point of the exfiltrated data, whether directly from its systems or a vendor, remained under investigation. El Camino Health demonstrated incident response protocols by launching an investigation upon external notification and proactively informing the affected patients.