The California Department of Fish and Wildlife reported a data breach involving personally identifiable information that was downloaded to an unencrypted personal device by a former employee. The breach was discovered on December 22, 2017, and was reported to the California Office of the Attorney General on February 14, 2018. The compromised data may have included names, social security numbers, and home addresses of individuals from 2007 to 2010.
Source: https://oag.ca.gov/ecrime/databreach/reports/sb24-133757
TPRM report: https://www.rankiteo.com/company/california-department-of-fish-and-wildlife
"id": "cal414072625",
"linkid": "california-department-of-fish-and-wildlife",
"type": "Breach",
"date": "6/2007",
"severity": "60",
"impact": "3",
"explanation": "Attack with significant impact with internal employee data leaks"{'affected_entities': [{'industry': 'Government',
'location': 'California, USA',
'name': 'California Department of Fish and Wildlife',
'type': 'Government Agency'}],
'attack_vector': 'Unencrypted Personal Device',
'data_breach': {'data_encryption': 'No',
'personally_identifiable_information': 'Yes',
'sensitivity_of_data': 'High',
'type_of_data_compromised': ['Names',
'Social Security Numbers',
'Home Addresses']},
'date_detected': '2017-12-22',
'date_publicly_disclosed': '2018-02-14',
'description': 'A data breach involving personally identifiable information '
'that was downloaded to an unencrypted personal device by a '
'former employee.',
'impact': {'data_compromised': ['Names',
'Social Security Numbers',
'Home Addresses']},
'references': [{'source': 'California Department of Fish and Wildlife'}],
'regulatory_compliance': {'regulatory_notifications': 'California Office of '
'the Attorney General'},
'threat_actor': 'Former Employee',
'title': 'California Department of Fish and Wildlife Data Breach',
'type': 'Data Breach',
'vulnerability_exploited': 'Unencrypted Data Storage'}