The California Office of the Attorney General reported on October 16, 2015, that NextBus, Inc. experienced a data security incident potentially exposing usernames, email addresses, telephone numbers, and passwords of its customers. The breach was discovered on September 18, 2015, due to suspicious activity on agency accounts, and involved compromised login credentials.
Source: https://oag.ca.gov/ecrime/databreach/reports/sb24-58315
TPRM report: https://www.rankiteo.com/company/grey-island-systems-international-inc
"id": "gre724072725",
"linkid": "grey-island-systems-international-inc",
"type": "Breach",
"date": "9/2015",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"{'affected_entities': [{'industry': 'Transportation',
'name': 'NextBus, Inc.',
'type': 'Company'}],
'attack_vector': 'Compromised Login Credentials',
'data_breach': {'personally_identifiable_information': ['usernames',
'email addresses',
'telephone numbers'],
'type_of_data_compromised': ['usernames',
'email addresses',
'telephone numbers',
'passwords']},
'date_detected': '2015-09-18',
'date_publicly_disclosed': '2015-10-16',
'description': 'The California Office of the Attorney General reported on '
'October 16, 2015, that NextBus, Inc. experienced a data '
'security incident potentially exposing usernames, email '
'addresses, telephone numbers, and passwords of its customers. '
'The breach was discovered on September 18, 2015, due to '
'suspicious activity on agency accounts, and involved '
'compromised login credentials.',
'impact': {'data_compromised': ['usernames',
'email addresses',
'telephone numbers',
'passwords']},
'references': [{'date_accessed': '2015-10-16',
'source': 'California Office of the Attorney General'}],
'title': 'NextBus Data Security Incident',
'type': 'Data Breach'}