Vulnerability cyber

Forrester Research, Inc.

Jul 27, 2023 1 min read
Forrester Research, Inc.

The Vermont Office of the Attorney General reported a data breach involving Forrester Research on July 27, 2023. The breach, which involved the vendor Pension Benefit Information, compromised names, dates of birth, social security numbers, and resident states/zip codes of impacted employees, while no personal health information was accessed. Approximately UNKN individuals were affected, and the breach was connected to a vulnerability in the MOVEit Transfer software exploited by cybercriminals.

Source: https://ago.vermont.gov/document/2023-07-27-forrester-research-data-breach-notice-consumers

TPRM report: https://www.rankiteo.com/company/forrester-research

"id": "for556072725",
"linkid": "forrester-research",
"type": "Vulnerability",
"date": "7/2023",
"severity": "60",
"impact": "3",
"explanation": "Attack with significant impact with internal employee data leaks"
{'affected_entities': [{'customers_affected': 'UNKN',
                        'industry': 'Research',
                        'name': 'Forrester Research',
                        'type': 'Company'}],
 'attack_vector': 'Software Vulnerability',
 'data_breach': {'number_of_records_exposed': 'UNKN',
                 'personally_identifiable_information': True,
                 'sensitivity_of_data': 'High',
                 'type_of_data_compromised': ['names',
                                              'dates of birth',
                                              'social security numbers',
                                              'resident states/zip codes']},
 'date_detected': '2023-07-27',
 'date_publicly_disclosed': '2023-07-27',
 'description': 'The Vermont Office of the Attorney General reported a data '
                'breach involving Forrester Research on July 27, 2023. The '
                'breach, which involved the vendor Pension Benefit '
                'Information, compromised names, dates of birth, social '
                'security numbers, and resident states/zip codes of impacted '
                'employees, while no personal health information was accessed. '
                'Approximately UNKN individuals were affected, and the breach '
                'was connected to a vulnerability in the MOVEit Transfer '
                'software exploited by cybercriminals.',
 'impact': {'data_compromised': ['names',
                                 'dates of birth',
                                 'social security numbers',
                                 'resident states/zip codes']},
 'references': [{'date_accessed': '2023-07-27',
                 'source': 'Vermont Office of the Attorney General'}],
 'threat_actor': 'Cybercriminals',
 'title': 'Data Breach at Forrester Research',
 'type': 'Data Breach',
 'vulnerability_exploited': 'MOVEit Transfer software vulnerability'}
Published by
Jeremy C
Jeremy C
You might also like
Great! Next, complete checkout for full access to Rankiteo Blog.
Welcome back! You've successfully signed in.
You've successfully subscribed to Rankiteo Blog.
Success! Your account is fully activated, you now have access to all content.
Success! Your billing info has been updated.
Your billing was not updated.