Breach cyber

Girl Scouts of Orange County

Sep 30, 2018 1 min read
Girl Scouts of Orange County

The California Office of the Attorney General reported a data breach involving Girl Scouts of Orange County on October 25, 2018. The breach occurred on September 30, 2018, when an unauthorized third party accessed an email account, potentially exposing personal information of individuals, including names, dates of birth, email addresses, home addresses, driver's licenses, health history, and insurance policy numbers.

Source: https://oag.ca.gov/ecrime/databreach/reports/sb24-141136

TPRM report: https://www.rankiteo.com/company/girl-scouts-of-orange-county

"id": "gir910072825",
"linkid": "girl-scouts-of-orange-county",
"type": "Breach",
"date": "9/2018",
"severity": "60",
"impact": "3",
"explanation": "Attack with significant impact with internal employee data leaks"
{'affected_entities': [{'industry': 'Youth Development',
                        'location': 'Orange County, California',
                        'name': 'Girl Scouts of Orange County',
                        'type': 'Non-profit Organization'}],
 'attack_vector': 'Email Account Compromise',
 'data_breach': {'personally_identifiable_information': True,
                 'sensitivity_of_data': 'High',
                 'type_of_data_compromised': ['Names',
                                              'Dates of Birth',
                                              'Email Addresses',
                                              'Home Addresses',
                                              "Driver's Licenses",
                                              'Health History',
                                              'Insurance Policy Numbers']},
 'date_detected': '2018-09-30',
 'date_publicly_disclosed': '2018-10-25',
 'description': 'The California Office of the Attorney General reported a data '
                'breach involving Girl Scouts of Orange County on October 25, '
                '2018. The breach occurred on September 30, 2018, when an '
                'unauthorized third party accessed an email account, '
                'potentially exposing personal information of individuals, '
                'including names, dates of birth, email addresses, home '
                "addresses, driver's licenses, health history, and insurance "
                'policy numbers.',
 'impact': {'data_compromised': ['Names',
                                 'Dates of Birth',
                                 'Email Addresses',
                                 'Home Addresses',
                                 "Driver's Licenses",
                                 'Health History',
                                 'Insurance Policy Numbers']},
 'initial_access_broker': {'entry_point': 'Email Account'},
 'references': [{'date_accessed': '2018-10-25',
                 'source': 'California Office of the Attorney General'}],
 'threat_actor': 'Unauthorized Third Party',
 'title': 'Data Breach at Girl Scouts of Orange County',
 'type': 'Data Breach'}
Published by
Jeremy C
Jeremy C
You might also like
Great! Next, complete checkout for full access to Rankiteo Blog.
Welcome back! You've successfully signed in.
You've successfully subscribed to Rankiteo Blog.
Success! Your account is fully activated, you now have access to all content.
Success! Your billing info has been updated.
Your billing was not updated.