The California Office of the Attorney General reported a data breach involving the California Department of Child Support Services (DCSS) on September 13, 2022. The breach occurred on or around March 8, 2022, when an employee sent an email to their personal account containing personal information, including individuals' names, IRS Tax Intercept amounts, and IRS collection sources. The total number of affected individuals is currently unknown.
Source: https://oag.ca.gov/ecrime/databreach/reports/sb24-557181
TPRM report: https://scoringcyber.rankiteo.com/company/california-child-support-services
"id": "cal518072625",
"linkid": "california-child-support-services",
"type": "Breach",
"date": "3/2022",
"severity": "60",
"impact": "3",
"explanation": "Attack with significant impact with internal employee data leaks"{'affected_entities': [{'industry': 'Public Administration',
'location': 'California, USA',
'name': 'California Department of Child Support '
'Services',
'type': 'Government Agency'}],
'attack_vector': 'Email',
'data_breach': {'data_exfiltration': True,
'personally_identifiable_information': True,
'sensitivity_of_data': 'High',
'type_of_data_compromised': ["Individuals' names",
'IRS Tax Intercept amounts',
'IRS collection sources']},
'date_detected': '2022-09-13',
'date_publicly_disclosed': '2022-09-13',
'description': 'An employee sent an email to their personal account '
"containing personal information, including individuals' "
'names, IRS Tax Intercept amounts, and IRS collection sources.',
'impact': {'data_compromised': ["Individuals' names",
'IRS Tax Intercept amounts',
'IRS collection sources']},
'initial_access_broker': {'entry_point': 'Email'},
'post_incident_analysis': {'root_causes': 'Human Error'},
'references': [{'date_accessed': '2022-09-13',
'source': 'California Office of the Attorney General'}],
'threat_actor': 'Internal Employee',
'title': 'Data Breach at California Department of Child Support Services',
'type': 'Data Breach',
'vulnerability_exploited': 'Human Error'}