Frank D. Lanterman Regional Center, which provides services to people with developmental disabilities in Los Angeles County, has reported a data breach affecting approximately 19,000 individuals. The incident exposed the sensitive personal and medical information of patients and their families.
What happened
The Los Angeles County Developmental Services Foundation, operating as Frank D. Lanterman Regional Center, disclosed the breach to the U.S. Department of Health and Human Services on June 20, 2025. The nonprofit organization discovered that an unauthorized party had accessed its computer network, though specific details about when the breach occurred or how it was discovered have not been released.
The center serves more than 8,800 children and adults with intellectual and developmental disabilities across several Los Angeles communities including Burbank, Glendale, Pasadena, and Hollywood. The breach appears to have affected a broader group than just current clients, possibly including family members and former patients.
Go deeper
The exposed information includes both personally identifiable information (PII) and protected health information (PHI). According to the breach notice, compromised data may include names, addresses, Social Security numbers, dates of birth, government-issued ID numbers, medical records, health insurance details, and financial account information.
This combination of personal and medical data is valuable to criminals. They can use it to file fraudulent tax returns, open credit accounts, submit fake medical insurance claims, or sell the information on the dark web. For people with developmental disabilities and their families, who may already face challenges managing finances and healthcare, this breach creates additional vulnerabilities.
The center has indicated it will provide free identity theft protection and credit monitoring services to affected individuals, though specific details about the duration and scope of these services have not been announced.
What they're saying
Multiple law firms have announced investigations into the breach. Dapeer Law, P.A. warned that the stolen data "could be valuable for identity theft, tax fraud, or medical-benefits fraud" and emphasized that "time limits apply" for those seeking legal recourse.
They are encouraging affected individuals to document any suspicious activity or expenses related to the breach for potential future claims.
FAQs
What should I do if I received a breach notification letter?
Sign up for any free credit monitoring services offered, place a fraud alert on your credit files, and monitor all financial and medical statements closely. Keep the notification letter as documentation and report any suspicious activity immediately to your bank, insurance company, or credit card issuer.
Can this breach affect my loved one's disability benefits?
While the breach itself shouldn't affect benefit eligibility, criminals could use the stolen information to redirect benefits or commit fraud in your loved one's name.
How long will I need to monitor for fraud?
Identity theft can occur months or even years after a breach. Continue monitoring accounts indefinitely, but be especially vigilant for the first two years.
