Blue Sphere LLC

On June 5, 2020, the Maine Office of the Attorney General disclosed that Blue Sphere LLC suffered a data breach, initially occurring on April 24, 2020. The incident compromised payment card information of approximately 2,689 individuals, exposing sensitive details such as card numbers, expiration dates, and security codes (CVV/CVC). The exposed data poses a significant risk of fraudulent transactions and identity theft, as threat actors could exploit the stolen payment details for unauthorized purchases or financial scams. Notably, the company did not offer identity theft protection services to affected individuals, leaving them vulnerable to potential long-term financial harm. The breach highlights critical gaps in payment security protocols, raising concerns over compliance with Payment Card Industry Data Security Standard (PCI DSS) and the company’s ability to safeguard customer financial data from cyber threats.

Source: https://www.maine.gov/agviewer/content/ag/985235c7-cb95-4be2-8792-a1252b4f8318/08f75ba3-3a5e-4033-85be-916bf271dfdd.shtml

TPRM report: https://www.rankiteo.com/company/blue-sphere-llc

"id": "blu028091825",
"linkid": "blue-sphere-llc",
"type": "Breach",
"date": "4/2020",
"severity": "60",
"impact": "2",
"explanation": "Attack limited on finance or reputation"

{'affected_entities': [{'customers_affected': 2689,
                        'name': 'Blue Sphere LLC',
                        'type': 'Private Company'}],
 'data_breach': {'number_of_records_exposed': 2689,
                 'personally_identifiable_information': 'No (only payment card '
                                                        'details)',
                 'sensitivity_of_data': 'High',
                 'type_of_data_compromised': ['Payment card information']},
 'date_detected': '2020-06-05',
 'date_publicly_disclosed': '2020-06-05',
 'description': 'The Maine Office of the Attorney General reported that Blue '
                'Sphere LLC experienced a data breach on June 5, 2020, with '
                'the breach date occurring earlier on April 24, 2020. '
                'Approximately 2,689 individuals were affected, with details '
                'indicating the breach involved payment card information, '
                'including card number, expiration date, and security code. '
                'Identity theft protection services were not offered.',
 'impact': {'data_compromised': ['Payment card information (card number, '
                                 'expiration date, security code)'],
            'identity_theft_risk': 'High (payment card details exposed)',
            'payment_information_risk': 'High (card number, expiration date, '
                                        'security code exposed)'},
 'references': [{'source': 'Maine Office of the Attorney General'}],
 'regulatory_compliance': {'regulatory_notifications': ['Maine Office of the '
                                                        'Attorney General']},
 'title': 'Blue Sphere LLC Data Breach (2020)',
 'type': 'Data Breach'}

Blue Sphere LLC

Grafana: Grafana GitHub Token Breach Led to Codebase Download and Extortion Attempt

Reqrea: Millions Of Hotel Guests' IDs Left Open Online In Massive Security Blunder

THORChain: More than $10 million stolen from crypto platform THORChain