J&D Brush Co., LLC

J&D Brush Co. LLC, operating as Bio Ionic, suffered a data breach due to unauthorized code injected into their website. The malicious code was active between March 7, 2023, and March 27, 2023, potentially exposing the personal information of 4,339 individuals, including eight residents of Rhode Island. The breach was detected on April 25, 2023, but the exact nature of the compromised data (e.g., names, financial details, or contact information) was not explicitly disclosed in the report. The incident was formally reported by the Maine Office of the Attorney General, indicating regulatory scrutiny. While the breach did not involve ransomware or a large-scale systemic attack, the exposure of personal data even if limited poses risks of identity theft, phishing, or fraud for the affected individuals. The company’s response timeline suggests a delay in detection, which may have prolonged the window of vulnerability.

Source: https://www.maine.gov/agviewer/content/ag/985235c7-cb95-4be2-8792-a1252b4f8318/82454eda-6ef3-4070-8cde-b1d7e50ecf90.shtml

TPRM report: https://www.rankiteo.com/company/beauty-by-imagination-bbi

"id": "bea1021090725",
"linkid": "beauty-by-imagination-bbi",
"type": "Breach",
"date": "3/2023",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"

{'affected_entities': [{'customers_affected': '4,339 individuals (including 8 '
                                              'Rhode Island residents)',
                        'name': 'J&D Brush Co. LLC dba Bio Ionic',
                        'type': 'Private Company'}],
 'attack_vector': 'Unauthorized code on website (likely supply chain or '
                  'third-party compromise)',
 'data_breach': {'number_of_records_exposed': '4,339',
                 'personally_identifiable_information': True,
                 'type_of_data_compromised': 'Personal information'},
 'date_detected': '2023-04-25',
 'description': 'The Maine Office of the Attorney General reported that J&D '
                'Brush Co. LLC dba Bio Ionic experienced a data breach '
                'involving unauthorized code on their website, which may have '
                'exposed personal information between March 7, 2023, and March '
                '27, 2023. A total of 4,339 individuals were affected, '
                'including 8 residents of Rhode Island.',
 'impact': {'data_compromised': 'Personal information',
            'identity_theft_risk': 'Potential (personal information exposed)',
            'systems_affected': ['Website']},
 'references': [{'source': 'Maine Office of the Attorney General'}],
 'regulatory_compliance': {'regulatory_notifications': ['Maine Office of the '
                                                        'Attorney General']},
 'response': {'communication_strategy': 'Reported to Maine Office of the '
                                        'Attorney General'},
 'title': 'Data Breach at J&D Brush Co. LLC dba Bio Ionic Due to Unauthorized '
          'Website Code',
 'type': 'Data Breach'}

J&D Brush Co., LLC

Coupang Fulfillment Services: Coupang cuts logistics workforce as orders slip after data breach

Monroe University: Monroe University Data Breach Affects 320k Exposing Social Security Numbers

VK: Hacker Claims Full Breach of Russia’s Max Messenger, Threatens Public Leak