The Vermont Office of the Attorney General reported on July 20, 2023, that Hess Corporation experienced a data breach involving unauthorized access to files transferred through its MOVEit Transfer solution. The breach occurred between May 29, 2023, and June 1, 2023, affecting personal information such as names, addresses, bank account numbers, and routing numbers; the total number of affected individuals is unknown.
Source: https://ago.vermont.gov/document/2023-07-20-hess-corporation-data-breach-notice-consumers
TPRM report: https://www.rankiteo.com/company/hess-corporation
"id": "hes423072925",
"linkid": "hess-corporation",
"type": "Breach",
"date": "5/2023",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"{'affected_entities': [{'industry': 'Energy',
'name': 'Hess Corporation',
'type': 'Corporation'}],
'attack_vector': 'Unauthorized Access',
'data_breach': {'personally_identifiable_information': ['names',
'addresses',
'bank account numbers',
'routing numbers'],
'sensitivity_of_data': 'High',
'type_of_data_compromised': ['personal information']},
'date_detected': '2023-06-01',
'date_publicly_disclosed': '2023-07-20',
'description': 'Unauthorized access to files transferred through Hess '
"Corporation's MOVEit Transfer solution, compromising personal "
'information.',
'impact': {'data_compromised': ['names',
'addresses',
'bank account numbers',
'routing numbers']},
'references': [{'date_accessed': '2023-07-20',
'source': 'Vermont Office of the Attorney General'}],
'title': 'Hess Corporation Data Breach',
'type': 'Data Breach',
'vulnerability_exploited': 'MOVEit Transfer solution'}