Breach cyber

The Affiliated Group

Nov 1, 2017 1 min read
The Affiliated Group

The California Office of the Attorney General reported a data breach involving The Affiliated Group on September 19, 2018. The breach occurred on November 20, 2017, due to unauthorized access to an employee's email account that was compromised in a phishing attack, potentially affecting 1,289 California residents. Compromised information included names, Social Security numbers, medical record numbers, and possibly financial account details.

Source: https://oag.ca.gov/ecrime/databreach/reports/sb24-139990

TPRM report: https://www.rankiteo.com/company/affiliated-resource-group

"id": "aff328072725",
"linkid": "affiliated-resource-group",
"type": "Breach",
"date": "11/2017",
"severity": "60",
"impact": "3",
"explanation": "Attack with significant impact with internal employee data leaks"
{'affected_entities': [{'customers_affected': 1289,
                        'location': 'California',
                        'name': 'The Affiliated Group',
                        'type': 'Company'}],
 'attack_vector': 'Phishing',
 'data_breach': {'number_of_records_exposed': 1289,
                 'personally_identifiable_information': True,
                 'sensitivity_of_data': 'High',
                 'type_of_data_compromised': ['names',
                                              'Social Security numbers',
                                              'medical record numbers',
                                              'financial account details']},
 'date_detected': '2018-09-19',
 'date_publicly_disclosed': '2018-09-19',
 'description': 'The California Office of the Attorney General reported a data '
                'breach involving The Affiliated Group on September 19, 2018. '
                'The breach occurred on November 20, 2017, due to unauthorized '
                "access to an employee's email account that was compromised in "
                'a phishing attack, potentially affecting 1,289 California '
                'residents. Compromised information included names, Social '
                'Security numbers, medical record numbers, and possibly '
                'financial account details.',
 'impact': {'data_compromised': ['names',
                                 'Social Security numbers',
                                 'medical record numbers',
                                 'financial account details']},
 'initial_access_broker': {'entry_point': 'Phishing email'},
 'post_incident_analysis': {'root_causes': 'Phishing attack leading to '
                                           'unauthorized access to an '
                                           "employee's email account"},
 'references': [{'date_accessed': '2018-09-19',
                 'source': 'California Office of the Attorney General'}],
 'title': 'Data Breach at The Affiliated Group',
 'type': 'Data Breach',
 'vulnerability_exploited': "Unauthorized access to an employee's email "
                            'account'}
Published by
Jeremy C
Jeremy C
You might also like
Great! Next, complete checkout for full access to Rankiteo Blog.
Welcome back! You've successfully signed in.
You've successfully subscribed to Rankiteo Blog.
Success! Your account is fully activated, you now have access to all content.
Success! Your billing info has been updated.
Your billing was not updated.