The Maine Office of the Attorney General reported that Ascension Capital Partners experienced a data breach on May 15, 2024, involving unauthorized access by a third party to a user account in their Microsoft 365 email tenant. The breach potentially exposed personal information of 136 individuals, including names, dates of birth, and Social Security numbers. Complimentary identity monitoring services through Kroll are being offered for 12 months to those affected.
TPRM report: https://www.rankiteo.com/company/ascension-capital-partners-fund-managers
"id": "asc329072725",
"linkid": "ascension-capital-partners-fund-managers",
"type": "Breach",
"date": "5/2024",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"{'affected_entities': [{'customers_affected': 136,
'industry': 'Financial Services',
'name': 'Ascension Capital Partners',
'type': 'Company'}],
'attack_vector': 'Unauthorized Access',
'data_breach': {'number_of_records_exposed': 136,
'personally_identifiable_information': ['Names',
'Dates of Birth',
'Social Security '
'Numbers'],
'sensitivity_of_data': 'High',
'type_of_data_compromised': ['Personal Information']},
'date_detected': '2024-05-15',
'description': 'Unauthorized access to a user account in Microsoft 365 email '
'tenant, potentially exposing personal information of 136 '
'individuals.',
'impact': {'data_compromised': ['Names',
'Dates of Birth',
'Social Security Numbers'],
'identity_theft_risk': 'High',
'systems_affected': ['Microsoft 365 Email Tenant']},
'initial_access_broker': {'entry_point': 'Microsoft 365 Email Tenant'},
'references': [{'source': 'Maine Office of the Attorney General'}],
'response': {'remediation_measures': ['Complimentary Identity Monitoring '
'Services'],
'third_party_assistance': ['Kroll']},
'title': 'Ascension Capital Partners Data Breach',
'type': 'Data Breach',
'vulnerability_exploited': 'Compromised User Account'}