ELO CPAs & Advisors

The Vermont Office of the Attorney General disclosed that ELO CPAs & Advisors suffered a data breach on March 24, 2023, involving unauthorized access to files containing protected personal information. While the exact number of affected individuals and the specific types of compromised data remain undisclosed, the breach exposed sensitive information, potentially including financial or personally identifiable details. The incident was formally reported on January 18, 2024, indicating a significant delay between discovery and public notification. The nature of the breach suggests a targeted intrusion, likely exploiting vulnerabilities in the firm’s cybersecurity defenses. Given the involvement of protected personal information, the breach poses risks of identity theft, financial fraud, or reputational harm to both the company and its clients. The lack of clarity on the scope of the breach further complicates risk assessment and mitigation efforts for affected parties.

Source: https://ago.vermont.gov/document/2024-01-18-elo-cpas-advisors-data-breach-notice-consumers

TPRM report: https://www.rankiteo.com/company/elocpa

"id": "elo000091825",
"linkid": "elocpa",
"type": "Breach",
"date": "3/2023",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"

{'affected_entities': [{'industry': 'Accounting/Financial Services',
                        'location': 'Vermont, USA',
                        'name': 'ELO CPAs & Advisors',
                        'type': 'Organization'}],
 'data_breach': {'personally_identifiable_information': True,
                 'sensitivity_of_data': 'High',
                 'type_of_data_compromised': 'Protected Personal Information'},
 'date_detected': '2023-03-24',
 'date_publicly_disclosed': '2024-01-18',
 'description': 'The Vermont Office of the Attorney General reported that ELO '
                'CPAs & Advisors experienced a data breach on March 24, 2023. '
                'The breach involved unauthorized access to files containing '
                'protected personal information, but the number of affected '
                'individuals and specific types of compromised information are '
                'unknown.',
 'impact': {'data_compromised': True},
 'references': [{'date_accessed': '2024-01-18',
                 'source': 'Vermont Office of the Attorney General'}],
 'regulatory_compliance': {'regulatory_notifications': 'Vermont Office of the '
                                                       'Attorney General'},
 'title': 'Data Breach at ELO CPAs & Advisors',
 'type': 'Data Breach'}

ELO CPAs & Advisors

UK Cabinet Office: Capita gave civil servants access to other people’s pensions data

NVIDIA: ShinyHunters Claim NVIDIA GeForce NOW User Database Theft

Trellix: Trellix Confirms Source Code Breach With Unauthorized Repository Access