The Maryland Office of the Attorney General reported that City Facilities Management (US) LLC experienced a data breach on November 30, 2023, due to a vulnerability in the MOVEit Transfer application used by its former vendor, Paycor. The breach potentially exposed personal information, including addresses and Social Security numbers, of individuals affected, though the exact number of individuals impacted is unknown.
TPRM report: https://www.rankiteo.com/company/cfmus
"id": "cfm710080525",
"linkid": "cfmus",
"type": "Vulnerability",
"date": "11/2023",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"{'affected_entities': [{'name': 'City Facilities Management (US) LLC',
'type': 'Company'}],
'attack_vector': 'Vulnerability Exploitation',
'data_breach': {'personally_identifiable_information': True,
'sensitivity_of_data': 'High',
'type_of_data_compromised': ['Addresses',
'Social Security numbers']},
'date_detected': '2023-11-30',
'description': 'The Maryland Office of the Attorney General reported that '
'City Facilities Management (US) LLC experienced a data breach '
'on November 30, 2023, due to a vulnerability in the MOVEit '
'Transfer application used by its former vendor, Paycor. The '
'breach potentially exposed personal information, including '
'addresses and Social Security numbers, of individuals '
'affected, though the exact number of individuals impacted is '
'unknown.',
'impact': {'data_compromised': ['Addresses', 'Social Security numbers']},
'references': [{'source': 'Maryland Office of the Attorney General'}],
'title': 'Data Breach at City Facilities Management (US) LLC',
'type': 'Data Breach',
'vulnerability_exploited': 'MOVEit Transfer application vulnerability'}