Evans Hotels

The California Office of the Attorney General reported a data breach involving Evans Hotels on July 8, 2015. The breach occurred on September 1, 2014, due to unauthorized access via backup payment card readers, affecting potentially numerous guests, though the specific number of individuals impacted is unknown. The compromised information included cardholder names, account numbers, expiration dates, and verification codes.

Source: https://oag.ca.gov/ecrime/databreach/reports/sb24-56969

TPRM report: https://www.rankiteo.com/company/evans-hotels

"id": "eva507072625",
"linkid": "evans-hotels",
"type": "Breach",
"date": "9/2014",
"severity": "60",
"impact": "2",
"explanation": "Attack limited on finance or reputation"

{'affected_entities': [{'industry': 'Hospitality',
                        'location': 'California',
                        'name': 'Evans Hotels',
                        'type': 'Hospitality'}],
 'attack_vector': 'Unauthorized Access',
 'data_breach': {'data_exfiltration': True,
                 'personally_identifiable_information': True,
                 'sensitivity_of_data': 'High',
                 'type_of_data_compromised': ['Cardholder Names',
                                              'Account Numbers',
                                              'Expiration Dates',
                                              'Verification Codes']},
 'date_detected': '2015-07-08',
 'date_publicly_disclosed': '2015-07-08',
 'description': 'The California Office of the Attorney General reported a data '
                'breach involving Evans Hotels on July 8, 2015. The breach '
                'occurred on September 1, 2014, due to unauthorized access via '
                'backup payment card readers, affecting potentially numerous '
                'guests, though the specific number of individuals impacted is '
                'unknown. The compromised information included cardholder '
                'names, account numbers, expiration dates, and verification '
                'codes.',
 'impact': {'data_compromised': ['Cardholder Names',
                                 'Account Numbers',
                                 'Expiration Dates',
                                 'Verification Codes'],
            'payment_information_risk': True},
 'initial_access_broker': {'entry_point': 'Backup Payment Card Readers'},
 'post_incident_analysis': {'root_causes': 'Unauthorized Access via Backup '
                                           'Payment Card Readers'},
 'references': [{'date_accessed': '2015-07-08',
                 'source': 'California Office of the Attorney General'}],
 'title': 'Evans Hotels Data Breach',
 'type': 'Data Breach',
 'vulnerability_exploited': 'Backup Payment Card Readers'}