The Vermont Office of the Attorney General reported a data breach involving BankGloucester on August 22, 2023. The breach occurred due to a vulnerability in Progress Software's MOVEit Transfer software, potentially affecting individuals' names, dates of birth, Social Security numbers, and account numbers. The incident involved data from multiple organizations but the specific number of individuals affected remains unknown.
TPRM report: https://www.rankiteo.com/company/bank-gloucester
"id": "ban524072725",
"linkid": "bank-gloucester",
"type": "Vulnerability",
"date": "5/2023",
"severity": "25",
"impact": "1",
"explanation": "Attack without any consequences"{'affected_entities': [{'industry': 'Financial Services',
'name': 'BankGloucester',
'type': 'Bank'}],
'attack_vector': 'Software Vulnerability',
'data_breach': {'personally_identifiable_information': True,
'sensitivity_of_data': 'High',
'type_of_data_compromised': ['names',
'dates of birth',
'Social Security numbers',
'account numbers']},
'date_detected': '2023-08-22',
'date_publicly_disclosed': '2023-08-22',
'description': 'The Vermont Office of the Attorney General reported a data '
'breach involving BankGloucester on August 22, 2023. The '
"breach occurred due to a vulnerability in Progress Software's "
"MOVEit Transfer software, potentially affecting individuals' "
'names, dates of birth, Social Security numbers, and account '
'numbers. The incident involved data from multiple '
'organizations but the specific number of individuals affected '
'remains unknown.',
'impact': {'data_compromised': ['names',
'dates of birth',
'Social Security numbers',
'account numbers']},
'references': [{'date_accessed': '2023-08-22',
'source': 'Vermont Office of the Attorney General'}],
'title': 'BankGloucester Data Breach',
'type': 'Data Breach',
'vulnerability_exploited': "Progress Software's MOVEit Transfer software"}