Block

A former employee of Block formerly known as Square downloaded reports from its Cash App containing some U.S. customer information.

The report contained the information regarding the users’ full names and brokerage account numbers, brokerage portfolio value, brokerage portfolio holdings, and stock trading activity for one trading day.

The employee always had regular access to these reports as part of their past job responsibilities but these reports were accessed without permission after their employment ended.

The company immediately launched an investigation to know the extent of the breach.

Source: https://techcrunch.com/2022/04/05/block-cash-app-data-breach/?guccounter=1&guce_referrer=aHR0cHM6Ly93d3cuZGF0YWJyZWFjaGVzLm5ldC8&guce_referrer_sig=AQAAAFbEt3yec_TMu0TvxXt0F5az_ZKBns7NdieltSDGa6227ubKJWNEt9aMr__IHXUZLrr_iUQ4NB1Pk2FhVc_HRBr0R_iWrfVO3LqPhoYlkpM6pZEQu7ZFtZ6ckKYgX6YJn0r4giGG1PWtX5K7u1qF8y9MB6l6gdUSaahyi-t20MYR

TPRM report: https://scoringcyber.rankiteo.com/company/joinblock

"id": "blo0391622",
"linkid": "joinblock",
"type": "Breach",
"date": "12/2021",
"severity": "80",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"

{'affected_entities': [{'industry': 'Financial Services',
                        'location': 'United States',
                        'name': 'Block (formerly Square)',
                        'type': 'Company'}],
 'attack_vector': 'Unauthorized Access',
 'data_breach': {'sensitivity_of_data': 'Medium to High',
                 'type_of_data_compromised': ['Full names',
                                              'Brokerage account numbers',
                                              'Brokerage portfolio value',
                                              'Brokerage portfolio holdings',
                                              'Stock trading activity']},
 'description': 'A former employee of Block formerly known as Square '
                'downloaded reports from its Cash App containing some U.S. '
                'customer information. The report contained the information '
                'regarding the users’ full names and brokerage account '
                'numbers, brokerage portfolio value, brokerage portfolio '
                'holdings, and stock trading activity for one trading day. The '
                'employee always had regular access to these reports as part '
                'of their past job responsibilities but these reports were '
                'accessed without permission after their employment ended. The '
                'company immediately launched an investigation to know the '
                'extent of the breach.',
 'impact': {'data_compromised': ['Full names',
                                 'Brokerage account numbers',
                                 'Brokerage portfolio value',
                                 'Brokerage portfolio holdings',
                                 'Stock trading activity']},
 'investigation_status': 'Ongoing',
 'motivation': 'Unknown',
 'response': {'containment_measures': 'Launched an investigation',
              'incident_response_plan_activated': 'Yes'},
 'threat_actor': 'Former Employee',
 'title': 'Unauthorized Data Access by Former Employee at Block (formerly '
          'Square)',
 'type': 'Data Breach',
 'vulnerability_exploited': 'Insider Threat'}