The California Office of the Attorney General reported a data breach involving Gannett Company, Inc. on April 28, 2017. The breach, discovered on March 30, 2017, involved a phishing attack that compromised employee email accounts, potentially exposing names, contact information, Social Security numbers, and other personal data, although the number of individuals affected is unknown.
Source: https://oag.ca.gov/ecrime/databreach/reports/sb24-67895
TPRM report: https://www.rankiteo.com/company/gannett
"id": "gan652072825",
"linkid": "gannett",
"type": "Breach",
"date": "3/2017",
"severity": "60",
"impact": "3",
"explanation": "Attack with significant impact with internal employee data leaks"{'affected_entities': [{'industry': 'Media',
'name': 'Gannett Company, Inc.',
'type': 'Company'}],
'attack_vector': 'Phishing',
'data_breach': {'personally_identifiable_information': True,
'type_of_data_compromised': ['names',
'contact information',
'Social Security numbers',
'other personal data']},
'date_detected': '2017-03-30',
'date_publicly_disclosed': '2017-04-28',
'description': 'The California Office of the Attorney General reported a data '
'breach involving Gannett Company, Inc. on April 28, 2017. The '
'breach, discovered on March 30, 2017, involved a phishing '
'attack that compromised employee email accounts, potentially '
'exposing names, contact information, Social Security numbers, '
'and other personal data, although the number of individuals '
'affected is unknown.',
'impact': {'data_compromised': ['names',
'contact information',
'Social Security numbers',
'other personal data']},
'references': [{'source': 'California Office of the Attorney General'}],
'title': 'Gannett Company, Inc. Data Breach',
'type': 'Data Breach'}