The Maine Department of Professional and Financial Regulation was notified by Iscential Inc. on April 12, 2021, regarding a data security incident that occurred on November 16, 2020. The incident involved a phishing attack that compromised the email account of a single employee, potentially affecting the personal information of approximately 2 Maine residents, including names, addresses, and Social Security numbers. Iscential has engaged cybersecurity experts and notified affected individuals, offering credit monitoring services.
TPRM report: https://www.rankiteo.com/company/iscential
"id": "isc614072825",
"linkid": "iscential",
"type": "Breach",
"date": "11/2020",
"severity": "60",
"impact": "3",
"explanation": "Attack with significant impact with internal employee data leaks"{'affected_entities': [{'customers_affected': 2,
'name': 'Iscential Inc.',
'type': 'Company'}],
'attack_vector': 'Email',
'data_breach': {'number_of_records_exposed': 2,
'personally_identifiable_information': ['Names',
'Addresses',
'Social Security '
'numbers'],
'sensitivity_of_data': 'High',
'type_of_data_compromised': ['Personal Information']},
'date_detected': '2021-04-12',
'description': 'A phishing attack compromised the email account of a single '
'employee, potentially affecting the personal information of '
'approximately 2 Maine residents.',
'impact': {'data_compromised': ['Names',
'Addresses',
'Social Security numbers']},
'initial_access_broker': {'entry_point': 'Email'},
'response': {'communication_strategy': 'Notified affected individuals, '
'offered credit monitoring services',
'third_party_assistance': 'Cybersecurity experts'},
'title': 'Phishing Attack on Iscential Inc.',
'type': 'Phishing Attack',
'vulnerability_exploited': 'Human Error'}