The California Office of the Attorney General reported a data breach involving Home Point Financial Corporation on June 20, 2017. The breach involved unauthorized access to employee email accounts due to a phishing scheme that began in November 2016, potentially exposing various personal information such as names, Social Security numbers, and financial account numbers.
Source: https://oag.ca.gov/ecrime/databreach/reports/sb24-98252
TPRM report: https://www.rankiteo.com/company/homepointloans
"id": "hom301072625",
"linkid": "homepointloans",
"type": "Breach",
"date": "11/2016",
"severity": "60",
"impact": "3",
"explanation": "Attack with significant impact with internal employee data leaks"{'affected_entities': [{'industry': 'Financial Services',
'name': 'Home Point Financial Corporation',
'type': 'Company'}],
'attack_vector': 'Phishing',
'data_breach': {'personally_identifiable_information': True,
'sensitivity_of_data': 'High',
'type_of_data_compromised': ['names',
'Social Security numbers',
'financial account numbers']},
'date_detected': '2017-06-20',
'date_publicly_disclosed': '2017-06-20',
'description': 'The California Office of the Attorney General reported a data '
'breach involving Home Point Financial Corporation on June 20, '
'2017. The breach involved unauthorized access to employee '
'email accounts due to a phishing scheme that began in '
'November 2016, potentially exposing various personal '
'information such as names, Social Security numbers, and '
'financial account numbers.',
'impact': {'data_compromised': ['names',
'Social Security numbers',
'financial account numbers']},
'initial_access_broker': {'entry_point': 'Employee email accounts'},
'post_incident_analysis': {'root_causes': 'Phishing scheme'},
'references': [{'date_accessed': '2017-06-20',
'source': 'California Office of the Attorney General'}],
'title': 'Home Point Financial Corporation Data Breach',
'type': 'Data Breach',
'vulnerability_exploited': 'Human'}