The California Office of the Attorney General reported a data breach involving Grant Thornton LLP on September 19, 2023. The breach occurred between April 19, 2023, and May 1, 2023, due to unauthorized access to an employee's email account, potentially affecting an unknown number of individuals, with names and additional unspecified personal information being involved.
Source: https://oag.ca.gov/ecrime/databreach/reports/sb24-573889
TPRM report: https://scoringcyber.rankiteo.com/company/grant-thornton-us
"id": "gra519072625",
"linkid": "grant-thornton-us",
"type": "Breach",
"date": "4/2023",
"severity": "60",
"impact": "3",
"explanation": "Attack with significant impact with internal employee data leaks"{'affected_entities': [{'industry': 'Professional Services',
'name': 'Grant Thornton LLP',
'type': 'Organization'}],
'attack_vector': 'Email Account Compromise',
'data_breach': {'personally_identifiable_information': True,
'type_of_data_compromised': ['Names',
'Unspecified Personal '
'Information']},
'date_detected': '2023-09-19',
'date_publicly_disclosed': '2023-09-19',
'description': "Unauthorized access to an employee's email account, "
'potentially affecting an unknown number of individuals, with '
'names and additional unspecified personal information being '
'involved.',
'impact': {'data_compromised': ['Names', 'Unspecified Personal Information']},
'references': [{'date_accessed': '2023-09-19',
'source': 'California Office of the Attorney General'}],
'title': 'Grant Thornton LLP Data Breach',
'type': 'Data Breach'}