The California Office of the Attorney General reported that CPT Group, Inc. experienced a data breach on December 8, 2017, potentially exposing individuals' names, addresses, and Social Security numbers. The breach involved unauthorized access to an employee's email account via a phishing email incident that began on November 22, 2017. The breach was reported on April 27, 2018.
Source: https://oag.ca.gov/ecrime/databreach/reports/sb24-135709
TPRM report: https://www.rankiteo.com/company/cpt-group
"id": "cpt640072725",
"linkid": "cpt-group",
"type": "Breach",
"date": "11/2017",
"severity": "60",
"impact": "3",
"explanation": "Attack with significant impact with internal employee data leaks"{'affected_entities': [{'name': 'CPT Group, Inc.', 'type': 'Company'}],
'attack_vector': 'Phishing',
'data_breach': {'personally_identifiable_information': True,
'sensitivity_of_data': 'High',
'type_of_data_compromised': ['Names',
'Addresses',
'Social Security numbers']},
'date_detected': '2017-12-08',
'date_publicly_disclosed': '2018-04-27',
'description': 'The California Office of the Attorney General reported that '
'CPT Group, Inc. experienced a data breach on December 8, '
"2017, potentially exposing individuals' names, addresses, and "
'Social Security numbers. The breach involved unauthorized '
"access to an employee's email account via a phishing email "
'incident that began on November 22, 2017. The breach was '
'reported on April 27, 2018.',
'impact': {'data_compromised': ['Names',
'Addresses',
'Social Security numbers']},
'initial_access_broker': {'entry_point': 'Email Account'},
'references': [{'source': 'California Office of the Attorney General'}],
'title': 'CPT Group, Inc. Data Breach',
'type': 'Data Breach',
'vulnerability_exploited': 'Email Account'}