Aperio Group client account data was breached.
It occurred when two employees’ email accounts were compromised by successful phishing attacks that resulted in auto-forwarding emails from those accounts to two external accounts.
The investigation determined that all emails sent to those two accounts had been blind copied/forwarded to the two external addresses.
The compromised data included account names, account numbers, email addresses, and account balances.
Social security numbers and clients’ login credentials were reportedly not compromised.
TPRM report: https://scoringcyber.rankiteo.com/company/aperio
"id": "ape11237622",
"linkid": "aperio",
"type": "Breach",
"date": "02/2018",
"severity": "60",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"{'affected_entities': [{'industry': 'Financial Services',
'name': 'Aperio Group',
'type': 'Company'}],
'attack_vector': 'Phishing',
'data_breach': {'data_exfiltration': 'Yes',
'sensitivity_of_data': 'Medium',
'type_of_data_compromised': ['Account names',
'Account numbers',
'Email addresses',
'Account balances']},
'description': 'Aperio Group client account data was breached when two '
'employees’ email accounts were compromised by successful '
'phishing attacks that resulted in auto-forwarding emails to '
'two external accounts.',
'impact': {'data_compromised': ['Account names',
'Account numbers',
'Email addresses',
'Account balances'],
'systems_affected': ['Email accounts']},
'initial_access_broker': {'entry_point': 'Email Phishing'},
'post_incident_analysis': {'root_causes': 'Phishing emails leading to email '
'compromise'},
'title': 'Aperio Group Client Account Data Breach',
'type': 'Data Breach',
'vulnerability_exploited': 'Email Compromise'}