The California Office of the Attorney General reported that on July 11, 2018, CNG Financial Corporation, Inc. experienced a data breach when customer information was sent to a third-party vendor via a USB drive that was subsequently reported missing. Approximately 1,500 individuals were potentially affected, with compromised information including names, addresses, Social Security numbers, and loan information. Written notices were mailed to affected individuals starting on August 15, 2018.
Source: https://oag.ca.gov/ecrime/databreach/reports/sb24-138904
TPRM report: https://www.rankiteo.com/company/cng-financial
"id": "cng315072925",
"linkid": "cng-financial",
"type": "Breach",
"date": "7/2018",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"{'affected_entities': [{'customers_affected': 1500,
'industry': 'Financial Services',
'name': 'CNG Financial Corporation, Inc.',
'type': 'Company'}],
'attack_vector': 'Loss of USB Drive',
'customer_advisories': 'Written notices mailed to affected individuals',
'data_breach': {'number_of_records_exposed': 1500,
'personally_identifiable_information': True,
'sensitivity_of_data': 'High',
'type_of_data_compromised': ['names',
'addresses',
'Social Security numbers',
'loan information']},
'date_detected': '2018-07-11',
'date_publicly_disclosed': '2018-08-15',
'description': 'CNG Financial Corporation, Inc. experienced a data breach '
'when customer information was sent to a third-party vendor '
'via a USB drive that was subsequently reported missing.',
'impact': {'data_compromised': ['names',
'addresses',
'Social Security numbers',
'loan information']},
'references': [{'source': 'California Office of the Attorney General'}],
'response': {'communication_strategy': 'Written notices mailed to affected '
'individuals'},
'title': 'CNG Financial Corporation Data Breach',
'type': 'Data Breach'}