The California Office of the Attorney General reported on December 22, 2016, that Dover Federal Credit Union experienced a data breach on September 20, 2016. An employee transferred account files to their personal Dropbox account, involving the personal information of all DFCU members, including names, addresses, account numbers, and Social Security numbers.
Source: https://oag.ca.gov/ecrime/databreach/reports/sb24-65580
TPRM report: https://www.rankiteo.com/company/doverfederal
"id": "dov925080425",
"linkid": "doverfederal",
"type": "Breach",
"date": "9/2016",
"severity": "60",
"impact": "3",
"explanation": "Attack with significant impact with internal employee data leaks"{'affected_entities': [{'customers_affected': 'All DFCU members',
'industry': 'Finance',
'location': 'California',
'name': 'Dover Federal Credit Union',
'type': 'Financial Institution'}],
'attack_vector': 'Insider Threat',
'data_breach': {'data_exfiltration': 'Yes',
'personally_identifiable_information': 'Yes',
'sensitivity_of_data': 'High',
'type_of_data_compromised': ['Personal Information']},
'date_detected': '2016-12-22',
'date_publicly_disclosed': '2016-12-22',
'description': 'An employee transferred account files to their personal '
'Dropbox account, involving the personal information of all '
'DFCU members, including names, addresses, account numbers, '
'and Social Security numbers.',
'impact': {'data_compromised': ['names',
'addresses',
'account numbers',
'Social Security numbers']},
'references': [{'date_accessed': '2016-12-22',
'source': 'California Office of the Attorney General'}],
'threat_actor': 'Employee',
'title': 'Dover Federal Credit Union Data Breach',
'type': 'Data Breach',
'vulnerability_exploited': 'Unauthorized Data Transfer'}