FanDuel

The FanDuel sportsbook and betting site suffered a data breach incident after which it warned the customers that their names and email addresses were exposed in a MailChimp security breach.

It also urged users to remain vigilant against phishing emails.

On January 13th, MailChimp confirmed they suffered a breach after hackers stole an employee’s credentials using a social engineering attack and this attack affected FanDuel customers.

Source: https://www.databreaches.net/fanduels-warns-of-data-breach-after-customer-info-stolen-in-vendor-hack/

TPRM report: https://scoringcyber.rankiteo.com/company/fanduel

"id": "fan22624123",
"linkid": "fanduel",
"type": "Data Leak",
"date": "01/2023",
"severity": "50",
"impact": "1",
"explanation": "Attack without any consequences"

{'affected_entities': [{'industry': 'Sports Betting',
                        'name': 'FanDuel',
                        'type': 'Company'}],
 'attack_vector': 'Social Engineering',
 'customer_advisories': ['Warned customers about phishing emails'],
 'data_breach': {'personally_identifiable_information': ['Names',
                                                         'Email Addresses'],
                 'type_of_data_compromised': ['Personally Identifiable '
                                              'Information']},
 'description': 'FanDuel sportsbook and betting site suffered a data breach '
                'incident after which it warned the customers that their names '
                'and email addresses were exposed in a MailChimp security '
                'breach.',
 'impact': {'data_compromised': ['Names', 'Email Addresses']},
 'recommendations': ['Remain vigilant against phishing emails'],
 'references': [{'source': 'FanDuel'}],
 'response': {'communication_strategy': ['Warned customers about phishing '
                                         'emails']},
 'title': 'FanDuel Data Breach',
 'type': 'Data Breach',
 'vulnerability_exploited': 'Stolen Employee Credentials'}