The California Office of the Attorney General reported a data breach involving Google Inc. on May 6, 2016. The breach occurred on March 29, 2016, when a third-party vendor mistakenly sent a document containing names and Social Security numbers of some Googlers to an unauthorized recipient. The number of affected individuals is currently unknown.
Source: https://oag.ca.gov/ecrime/databreach/reports/sb24-61707
TPRM report: https://www.rankiteo.com/company/google
"id": "goo444072625",
"linkid": "google",
"type": "Breach",
"date": "3/2016",
"severity": "60",
"impact": "3",
"explanation": "Attack with significant impact with internal employee data leaks"{'affected_entities': [{'industry': 'Technology',
'location': 'California',
'name': 'Google Inc.',
'type': 'Company'}],
'attack_vector': 'Third-party vendor error',
'data_breach': {'personally_identifiable_information': True,
'sensitivity_of_data': 'High',
'type_of_data_compromised': ['Names',
'Social Security numbers']},
'date_detected': '2016-03-29',
'date_publicly_disclosed': '2016-05-06',
'description': 'A third-party vendor mistakenly sent a document containing '
'names and Social Security numbers of some Googlers to an '
'unauthorized recipient.',
'impact': {'data_compromised': ['Names', 'Social Security numbers']},
'post_incident_analysis': {'root_causes': 'Human error by third-party vendor'},
'references': [{'date_accessed': '2016-05-06',
'source': 'California Office of the Attorney General'}],
'threat_actor': 'Unauthorized recipient',
'title': 'Data Breach at Google Inc.',
'type': 'Data Breach',
'vulnerability_exploited': 'Human error'}