The California Office of the Attorney General reported a data breach involving BSI Financial Services on September 27, 2017. The breach occurred on June 1, 2017, when an unauthorized third-party accessed an employee's business e-mail account, potentially exposing customer names, addresses, account numbers, and other account information. The number of individuals affected is currently unknown.
Source: https://oag.ca.gov/ecrime/databreach/reports/sb24-102180
TPRM report: https://www.rankiteo.com/company/bsifinancial
"id": "bsi951072525",
"linkid": "bsifinancial",
"type": "Breach",
"date": "6/2017",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"{'affected_entities': [{'industry': 'Financial Services',
'name': 'BSI Financial Services',
'type': 'Company'}],
'attack_vector': 'Email Compromise',
'data_breach': {'personally_identifiable_information': ['Customer Names',
'Addresses'],
'type_of_data_compromised': ['Customer Names',
'Addresses',
'Account Numbers',
'Other Account Information']},
'date_detected': '2017-06-01',
'date_publicly_disclosed': '2017-09-27',
'description': 'The California Office of the Attorney General reported a data '
'breach involving BSI Financial Services on September 27, '
'2017. The breach occurred on June 1, 2017, when an '
"unauthorized third-party accessed an employee's business "
'e-mail account, potentially exposing customer names, '
'addresses, account numbers, and other account information. '
'The number of individuals affected is currently unknown.',
'impact': {'data_compromised': ['Customer Names',
'Addresses',
'Account Numbers',
'Other Account Information']},
'initial_access_broker': {'entry_point': 'Email Account'},
'references': [{'date_accessed': '2017-09-27',
'source': 'California Office of the Attorney General'}],
'threat_actor': 'Unauthorized Third-Party',
'title': 'BSI Financial Services Data Breach',
'type': 'Data Breach',
'vulnerability_exploited': 'Unauthorized Access to Email Account'}