An unknown third party accessed employee payroll information after having gained access to an employee’s email address.
The third party was able to set up rules in the employee’s email that diverted the employee’s email
messages to the third party.
The incident involved the 2019 W-2 and associated information.
Source: https://oag.ca.gov/system/files/CA%20Breach%20Notice.pdf
TPRM report: https://scoringcyber.rankiteo.com/company/astllc
"id": "ast1825291222",
"linkid": "astllc",
"type": "Data Leak",
"date": "03/2020",
"severity": "60",
"impact": "3",
"explanation": "Attack with significant impact with internal employee data leaks"
{'affected_entities': [{'type': 'Company'}],
'attack_vector': 'Email Compromise',
'data_breach': {'data_exfiltration': True,
'personally_identifiable_information': True,
'sensitivity_of_data': 'High',
'type_of_data_compromised': ['Payroll Information',
'W-2 Information']},
'description': 'An unknown third party accessed employee payroll information '
'after gaining access to an employee’s email address. The '
'third party set up rules in the employee’s email that '
'diverted the employee’s email messages to the third party. '
'The incident involved the 2019 W-2 and associated '
'information.',
'impact': {'data_compromised': ['2019 W-2 Information'],
'systems_affected': ['Employee Email']},
'initial_access_broker': {'entry_point': 'Employee Email'},
'threat_actor': 'Unknown Third Party',
'title': 'Employee Payroll Information Breach',
'type': 'Data Breach',
'vulnerability_exploited': 'Unauthorized Email Access'}