FormFactor, Inc.

On July 16, 2020, the California Office of the Attorney General disclosed a data breach affecting FormFactor, Inc., a semiconductor test and measurement company. The incident was detected on June 21, 2020, when unauthorized actors gained access to the company’s IT systems via malware, compromising sensitive data. The breach exposed personal and HR-related information, including Social Security numbers (SSNs), though the exact number of impacted individuals remains undisclosed. The attack targeted internal employee records, suggesting a focused effort to extract confidential workforce data, which could enable identity theft, financial fraud, or further cyber exploits. Given the nature of the compromised data—SSNs and HR files—the breach poses long-term risks to affected employees, including potential phishing scams, credit fraud, or reputational harm to the company. The use of malware indicates a deliberate cyber intrusion, likely orchestrated by threat actors with malicious intent. While the company took steps to investigate and mitigate the incident, the lack of transparency regarding the scope of the breach (e.g., duration of access, specific malware strain, or whether customer data was also exposed) leaves critical questions unanswered. The incident underscores vulnerabilities in enterprise cybersecurity defenses, particularly against malware-based infiltrations targeting high-value internal databases.

Source: https://oag.ca.gov/ecrime/databreach/reports/sb24-192052

TPRM report: https://www.rankiteo.com/company/formfactor

"id": "for026091825",
"linkid": "formfactor",
"type": "Breach",
"date": "6/2020",
"severity": "85",
"impact": "3",
"explanation": "Attack with significant impact with internal employee data leaks"

{'affected_entities': [{'customers_affected': 'Unknown',
                        'industry': 'Semiconductor / Technology',
                        'location': 'California, USA',
                        'name': 'FormFactor, Inc.',
                        'type': 'Corporation'}],
 'attack_vector': 'Malware',
 'data_breach': {'number_of_records_exposed': 'Unknown',
                 'personally_identifiable_information': 'Yes (Social Security '
                                                        'Numbers)',
                 'sensitivity_of_data': 'High',
                 'type_of_data_compromised': ['HR data',
                                              'Social Security Numbers']},
 'date_detected': '2020-06-21',
 'date_publicly_disclosed': '2020-07-16',
 'description': 'The California Office of the Attorney General reported a data '
                'breach involving FormFactor, Inc. on July 16, 2020. The '
                'breach, discovered on June 21, 2020, involved unauthorized '
                'access to IT systems due to malware, affecting personal data '
                'including HR data and social security numbers. The total '
                'number of individuals affected remains unknown.',
 'impact': {'data_compromised': ['HR data', 'Social Security Numbers'],
            'identity_theft_risk': 'High (SSNs compromised)',
            'systems_affected': ['IT systems']},
 'references': [{'date_accessed': '2020-07-16',
                 'source': 'California Office of the Attorney General'}],
 'regulatory_compliance': {'regulatory_notifications': 'California Office of '
                                                       'the Attorney General'},
 'response': {'communication_strategy': 'Public disclosure via California '
                                        'Office of the Attorney General'},
 'title': 'Data Breach at FormFactor, Inc.',
 'type': 'Data Breach'}

FormFactor, Inc.

Reqrea: Millions Of Hotel Guests' IDs Left Open Online In Massive Security Blunder

THORChain: More than $10 million stolen from crypto platform THORChain

Cornick and Garber & Sandler LLP: Cornick, Garber & Sandler Data Breach Impacts 1,570: SSNs Exposed