Farmer Bros. Co.

The California Office of the Attorney General disclosed a data breach affecting Farmer Bros. Co. on December 11, 2018, stemming from an incident on September 18, 2018. An unauthorized third party gained access to multiple company email accounts, potentially exposing the personal and financial information of affected individuals. While the exact number of impacted individuals remains undisclosed, the breach raises concerns over the security of sensitive data, including possible financial records and personally identifiable information (PII). The attack vector suggests a targeted intrusion, likely through phishing or credential compromise, leading to unauthorized data access. The breach underscores vulnerabilities in email security protocols and the broader risks of financial and identity theft for those affected. No ransomware was reported in the incident, but the exposure of financial data elevates the severity due to the potential for fraud and long-term reputational harm to the company.

Source: https://oag.ca.gov/ecrime/databreach/reports/sb24-142591

TPRM report: https://www.rankiteo.com/company/farmer-brothers

"id": "far014091825",
"linkid": "farmer-brothers",
"type": "Breach",
"date": "5/2018",
"severity": "100",
"impact": "5",
"explanation": "Attack threatening the organization's existence"

{'affected_entities': [{'customers_affected': 'Unknown',
                        'industry': 'Food & Beverage',
                        'location': 'California, USA',
                        'name': 'Farmer Bros. Co.',
                        'type': 'Company'}],
 'attack_vector': 'Unauthorized Email Access',
 'data_breach': {'number_of_records_exposed': 'Unknown',
                 'personally_identifiable_information': 'Potential',
                 'sensitivity_of_data': 'High',
                 'type_of_data_compromised': ['Personal Information',
                                              'Financial Information']},
 'date_detected': '2018-09-18',
 'date_publicly_disclosed': '2018-12-11',
 'description': 'The California Office of the Attorney General reported a data '
                'breach involving Farmer Bros. Co. on December 11, 2018. The '
                'breach occurred on September 18, 2018, when multiple company '
                'email accounts were accessed by an unauthorized third party, '
                'potentially compromising personal and financial information '
                'of affected individuals, though the exact number affected is '
                'unknown.',
 'impact': {'data_compromised': ['Personal Information',
                                 'Financial Information'],
            'identity_theft_risk': 'Potential',
            'payment_information_risk': 'Potential',
            'systems_affected': ['Email Accounts']},
 'initial_access_broker': {'entry_point': 'Email Accounts'},
 'references': [{'source': 'California Office of the Attorney General'}],
 'regulatory_compliance': {'regulatory_notifications': ['California Office of '
                                                        'the Attorney '
                                                        'General']},
 'threat_actor': 'Unauthorized Third Party',
 'title': 'Farmer Bros. Co. Email Account Data Breach (2018)',
 'type': 'Data Breach'}

Farmer Bros. Co.

Grafana: Grafana GitHub Token Breach Led to Codebase Download and Extortion Attempt

Reqrea: Millions Of Hotel Guests' IDs Left Open Online In Massive Security Blunder

Belambra, Gîtes de France and Pierre & Vacances-Center Parcs: Gîtes de France among three booking websites to be hit by cyberattack