On July 28, 2020, the California Office of the Attorney General reported a data breach involving Front Rush, LLC. The breach involved the public accessibility of an Amazon Web Services S3 bucket that contained personal information from January 18, 2016, to January 8, 2020. The investigation did not show evidence of unauthorized access, but it is confirmed that personal information was stored in the exposed S3 bucket, including names and potentially other types of personal data.
Source: https://oag.ca.gov/ecrime/databreach/reports/sb24-192488
TPRM report: https://www.rankiteo.com/company/frontrush
"id": "fro136072525",
"linkid": "frontrush",
"type": "Breach",
"date": "1/2016",
"severity": "25",
"impact": "1",
"explanation": "Attack without any consequences"{'affected_entities': [{'name': 'Front Rush, LLC', 'type': 'Company'}],
'attack_vector': 'Misconfigured S3 Bucket',
'data_breach': {'personally_identifiable_information': ['Names'],
'type_of_data_compromised': ['Names',
'Potentially other types of '
'personal data']},
'date_detected': '2020-01-08',
'date_publicly_disclosed': '2020-07-28',
'description': 'A data breach involving Front Rush, LLC, where an Amazon Web '
'Services S3 bucket containing personal information was '
'publicly accessible from January 18, 2016, to January 8, '
'2020.',
'impact': {'data_compromised': ['Names',
'Potentially other types of personal data'],
'systems_affected': ['Amazon Web Services S3 Bucket']},
'references': [{'date_accessed': '2020-07-28',
'source': 'California Office of the Attorney General'}],
'title': 'Front Rush, LLC Data Breach',
'type': 'Data Breach',
'vulnerability_exploited': 'Publicly Accessible S3 Bucket'}