Brighton Collectibles, LLC

The California Office of the Attorney General disclosed a data breach affecting Brighton Collectibles, LLC in March 2019. The incident occurred between January 28, 2019, and February 15, 2019, during which unauthorized actors gained access to the company’s systems. The breach exposed sensitive customer information, including names, credit card numbers, expiration dates, and security codes (CVV). While the exact number of affected individuals was not specified, the exposure of full payment card details poses a significant risk of financial fraud and identity theft. The breach highlights vulnerabilities in the company’s data security measures, particularly in safeguarding payment processing systems. Customers impacted by this incident were likely at heightened risk of fraudulent transactions, phishing attempts, and other cybercrimes leveraging the stolen card data. The company was required to notify affected individuals and may have faced regulatory scrutiny under California’s data protection laws, including potential penalties for failing to adequately protect consumer data.

Source: https://oag.ca.gov/ecrime/databreach/reports/sb24-145665

TPRM report: https://www.rankiteo.com/company/brighton-collectables

"id": "bri1010090725",
"linkid": "brighton-collectables",
"type": "Breach",
"date": "1/2019",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"

{'affected_entities': [{'industry': 'Fashion Accessories',
                        'location': 'California, USA',
                        'name': 'Brighton Collectibles, LLC',
                        'type': 'Retail'}],
 'data_breach': {'data_exfiltration': 'Likely (data exposed)',
                 'personally_identifiable_information': ['Names',
                                                         'Credit card numbers',
                                                         'Expiration dates',
                                                         'Security codes'],
                 'sensitivity_of_data': 'High',
                 'type_of_data_compromised': ['Personal Information',
                                              'Payment Card Data']},
 'date_detected': '2019-02-15',
 'date_publicly_disclosed': '2019-03-22',
 'description': 'The California Office of the Attorney General reported a data '
                'breach involving Brighton Collectibles, LLC. The breach '
                'occurred between January 28, 2019, and February 15, 2019, '
                'potentially exposing customer names, credit card numbers, '
                'expiration dates, and security codes.',
 'impact': {'data_compromised': ['Customer names',
                                 'Credit card numbers',
                                 'Expiration dates',
                                 'Security codes'],
            'identity_theft_risk': 'High (payment card data exposed)',
            'payment_information_risk': 'High (full card details exposed)'},
 'references': [{'date_accessed': '2019-03-22',
                 'source': 'California Office of the Attorney General'}],
 'regulatory_compliance': {'regulations_violated': ['Potential California '
                                                    'Consumer Privacy Act '
                                                    '(CCPA) violations'],
                           'regulatory_notifications': ['California Office of '
                                                        'the Attorney '
                                                        'General']},
 'response': {'communication_strategy': 'Public disclosure via California AG '
                                        'office'},
 'title': 'Brighton Collectibles, LLC Data Breach (2019)',
 'type': 'Data Breach'}