Haydon Corporation

The Vermont Office of the Attorney General disclosed on January 26, 2023, that Haydon Corporation suffered a data breach on November 27, 2022, due to unauthorized access to its computer systems. The incident exposed sensitive personal and financial information, including names, Social Security numbers, financial account details, and employee health plan enrollment data. While the exact number of affected individuals remains undisclosed, the breach poses significant risks such as identity theft, financial fraud, and potential misuse of health-related information. The compromised data suggests a targeted intrusion aimed at extracting high-value employee records, raising concerns over internal security protocols and the broader implications for workforce privacy. The lack of clarity on the breach’s scale further complicates mitigation efforts, leaving employees and possibly customers vulnerable to long-term repercussions. Authorities have not yet confirmed whether the breach was part of a larger cybercriminal campaign or an isolated incident.

Source: https://ago.vermont.gov/document/2023-01-26-haydon-corporation-data-breach-notice-consumers

TPRM report: https://www.rankiteo.com/company/haydon-corporation-inc.

"id": "hay016091825",
"linkid": "haydon-corporation-inc.",
"type": "Breach",
"date": "11/2022",
"severity": "85",
"impact": "3",
"explanation": "Attack with significant impact with internal employee data leaks"

{'affected_entities': [{'location': 'Vermont, USA',
                        'name': 'Haydon Corporation',
                        'type': 'Corporation'}],
 'data_breach': {'data_exfiltration': 'Likely (unauthorized access confirmed)',
                 'personally_identifiable_information': True,
                 'sensitivity_of_data': 'High',
                 'type_of_data_compromised': ['Personally Identifiable '
                                              'Information (PII)',
                                              'Financial Data',
                                              'Health Plan Enrollment '
                                              'Information']},
 'date_detected': '2022-11-27',
 'date_publicly_disclosed': '2023-01-26',
 'description': 'The Vermont Office of the Attorney General reported that '
                'Haydon Corporation experienced a data breach involving '
                'unauthorized access to their computer systems on November 27, '
                '2022. The breach potentially compromised names, Social '
                'Security numbers, financial account numbers, and employee '
                'health plan enrollment information, though the specific '
                'number of affected individuals is unknown.',
 'impact': {'data_compromised': ['Names',
                                 'Social Security numbers',
                                 'Financial account numbers',
                                 'Employee health plan enrollment information'],
            'identity_theft_risk': 'High (PII and financial data exposed)',
            'payment_information_risk': 'High (financial account numbers '
                                        'exposed)',
            'systems_affected': ['Computer systems']},
 'investigation_status': 'Ongoing (number of affected individuals unknown)',
 'references': [{'date_accessed': '2023-01-26',
                 'source': 'Vermont Office of the Attorney General'}],
 'regulatory_compliance': {'regulatory_notifications': 'Vermont Office of the '
                                                       'Attorney General'},
 'response': {'communication_strategy': 'Public disclosure via Vermont Office '
                                        'of the Attorney General'},
 'title': 'Haydon Corporation Data Breach',
 'type': 'Data Breach'}