The California Office of the Attorney General reported a data breach involving IM Shopping, Inc. on June 26, 2019. The breach occurred on April 24, 2019, when an unauthorized script was placed in the code of the Gift Card Mall website, potentially exposing customer names, addresses, and payment card information.
Source: https://oag.ca.gov/ecrime/databreach/reports/sb24-148456
TPRM report: https://www.rankiteo.com/company/im-holding-inc-
"id": "im-643072625",
"linkid": "im-holding-inc-",
"type": "Breach",
"date": "4/2019",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"{'affected_entities': [{'industry': 'Retail',
'name': 'IM Shopping, Inc.',
'type': 'Company'}],
'attack_vector': 'Unauthorized Script Injection',
'data_breach': {'personally_identifiable_information': ['Customer Names',
'Addresses'],
'type_of_data_compromised': ['Customer Names',
'Addresses',
'Payment Card Information']},
'date_detected': '2019-04-24',
'date_publicly_disclosed': '2019-06-26',
'description': 'The California Office of the Attorney General reported a data '
'breach involving IM Shopping, Inc. on June 26, 2019. The '
'breach occurred on April 24, 2019, when an unauthorized '
'script was placed in the code of the Gift Card Mall website, '
'potentially exposing customer names, addresses, and payment '
'card information.',
'impact': {'data_compromised': ['Customer Names',
'Addresses',
'Payment Card Information'],
'systems_affected': ['Gift Card Mall Website']},
'initial_access_broker': {'entry_point': 'Gift Card Mall Website'},
'references': [{'date_accessed': '2019-06-26',
'source': 'California Office of the Attorney General'}],
'title': 'Data Breach at IM Shopping, Inc.',
'type': 'Data Breach',
'vulnerability_exploited': 'Code Injection'}