On October 17, 2021, the Maine Office of the Attorney General reported a data breach involving CoreNorth, which occurred on May 28, 2021, due to unauthorized access to an employee's email. The breach potentially affected the Social Security number of 677 individuals, with only 1 resident affected directly. Identity theft protection services, including one year of credit monitoring by Experian, were offered to those impacted.
TPRM report: https://scoringcyber.rankiteo.com/company/corenorth-capital-planning
"id": "cor137072825",
"linkid": "corenorth-capital-planning",
"type": "Breach",
"date": "6/2020",
"severity": "60",
"impact": "3",
"explanation": "Attack with significant impact with internal employee data leaks"{'affected_entities': [{'customers_affected': 677,
'name': 'CoreNorth',
'type': 'Company'}],
'attack_vector': 'Email Compromise',
'data_breach': {'number_of_records_exposed': 677,
'personally_identifiable_information': 'Social Security '
'numbers',
'sensitivity_of_data': 'High',
'type_of_data_compromised': 'Social Security numbers'},
'date_detected': '2021-10-17',
'date_publicly_disclosed': '2021-10-17',
'description': "Unauthorized access to an employee's email potentially "
'compromised the Social Security numbers of 677 individuals.',
'impact': {'data_compromised': ['Social Security numbers'],
'identity_theft_risk': 'High'},
'initial_access_broker': {'entry_point': 'Email Compromise'},
'post_incident_analysis': {'root_causes': 'Unauthorized access to an '
"employee's email"},
'references': [{'date_accessed': '2021-10-17',
'source': 'Maine Office of the Attorney General'}],
'response': {'remediation_measures': ['Identity theft protection services '
'including one year of credit '
'monitoring by Experian']},
'title': 'CoreNorth Data Breach',
'type': 'Data Breach',
'vulnerability_exploited': 'Unauthorized Access'}