On December 27, 2024, Hebrew Home for Aged Disabled, also known as San Francisco Campus for Jewish Living (SFCJL), identified a data breach. The breach involved unauthorized access to one employee’s email account, which triggered an immediate response. SFCJL swiftly secured the account and engaged a cybersecurity firm to investigate the incident’s cause and scope. The forensic investigation, which concluded on February 6, 2025, confirmed that the unauthorized user had limited access to the account, without any indication of data misuse.
After the investigation, SFCJL conducted a thorough review to assess the data that could have been exposed. The compromised information may include names, dates of birth, medical records, medication details, COVID testing information, payment history, and insurance data. However, SFCJL has not received any reports of fraudulent activity or identity theft related to the incident since its discovery. The final list of impacted individuals was completed on April 2, 2025, with a total of one Maine resident being affected.
The affected Maine resident received a notification letter from SFCJL on April 7, 2025, outlining the breach and offering free credit monitoring services. The notification emphasized the importance of safeguarding personal data and included instructions on how to monitor credit activity for potential fraudulent transactions. SFCJL also took immediate action to strengthen its security by changing the compromised account’s user credentials and reporting the breach to law enforcement authorities.
In response to the breach, SFCJL is enhancing its security measures and has committed to preventing similar incidents in the future. To protect individuals affected by the breach, SFCJL is offering 12 months of complimentary credit monitoring services through TransUnion. Along with this, SFCJL has provided guidance on how individuals can protect themselves from identity theft, including placing fraud alerts, securing credit files, and monitoring account statements.
Reference:
