The California Office of the Attorney General reported a data breach involving Worldwide Services Insurance Agency, LLC on May 21, 2018. The breach occurred between October 11, 2017, and October 13, 2017, resulting from unauthorized access to employees' email accounts through a phishing email scheme. The breach compromised the personal information of employees, including names, addresses, Social Security numbers, and other sensitive data. This incident highlights the vulnerability of organizations to phishing attacks and the importance of robust cybersecurity measures to protect sensitive information.
Source: https://oag.ca.gov/ecrime/databreach/reports/sb24-136424
TPRM report: https://www.rankiteo.com/company/geoblue
"id": "geo538072825",
"linkid": "geoblue",
"type": "Breach",
"date": "10/2017",
"severity": "85",
"impact": "3",
"explanation": "Attack with significant impact with internal employee data leaks"{'affected_entities': [{'industry': 'Insurance',
'name': 'Worldwide Services Insurance Agency, LLC',
'type': 'Company'}],
'attack_vector': 'Phishing',
'date_detected': '2018-05-21',
'date_publicly_disclosed': '2018-05-21',
'description': 'The California Office of the Attorney General reported a data '
'breach involving Worldwide Services Insurance Agency, LLC on '
'May 21, 2018. The breach occurred between October 11, 2017 '
'and October 13, 2017, resulting from unauthorized access to '
"employees' email accounts through a phishing email scheme.",
'initial_access_broker': {'entry_point': 'Phishing email'},
'post_incident_analysis': {'root_causes': 'Unauthorized access to email '
'accounts through phishing'},
'references': [{'date_accessed': '2018-05-21',
'source': 'California Office of the Attorney General'}],
'title': 'Data Breach at Worldwide Services Insurance Agency, LLC',
'type': 'Data Breach',
'vulnerability_exploited': 'Unauthorized access to email accounts'}