Computacenter experienced a security incident which gave unauthorized access to one of it's mailbox used by Computacenter employees and contractors to deposit data for security clearance applications.
The information compromised could include ID data, contact details, bank details, addresses and employment history.
The attacker gained entry and changed the password for the mailbox, which system audit logs showed prevented further access by Computacenter.
However, these logs cannot tell us precisely what was in the mailbox at the time of the attack or whether the data was exported or just deleted.
TPRM report: https://scoringcyber.rankiteo.com/company/computacenter
"id": "com224219323",
"linkid": "computacenter",
"type": "Data Leak",
"date": "05/2019",
"severity": "60",
"impact": "3",
"explanation": "Attack with significant impact with internal employee data leaks"{'affected_entities': [{'industry': 'IT Services',
'name': 'Computacenter',
'type': 'Company'}],
'attack_vector': 'Mailbox Compromise',
'data_breach': {'type_of_data_compromised': ['ID data',
'contact details',
'bank details',
'addresses',
'employment history']},
'description': 'Computacenter experienced a security incident which gave '
'unauthorized access to one of its mailboxes used by employees '
'and contractors to deposit data for security clearance '
'applications. The information compromised could include ID '
'data, contact details, bank details, addresses, and '
'employment history. The attacker gained entry and changed the '
'password for the mailbox, which system audit logs showed '
'prevented further access by Computacenter. However, these '
'logs cannot tell us precisely what was in the mailbox at the '
'time of the attack or whether the data was exported or just '
'deleted.',
'impact': {'data_compromised': ['ID data',
'contact details',
'bank details',
'addresses',
'employment history'],
'systems_affected': ['Mailbox']},
'title': 'Computacenter Security Incident',
'type': 'Unauthorized Access'}