JPMorgan Chase Bank, N.A.

The California Office of the Attorney General reported a data breach involving JPMorgan Chase Bank, N.A. on December 23, 2020. The breach occurred between April and November 2020, potentially affecting personal and financial information such as names, addresses, account numbers, Social Security numbers, and email addresses. The breach was due to a call center employee allowing an unauthorized third party to overhear a call and view their screen.

Source: https://oag.ca.gov/ecrime/databreach/reports/sb24-197508

TPRM report: https://www.rankiteo.com/company/jpmorgan-chase-bank-national-association

"id": "jpm422080425",
"linkid": "jpmorgan-chase-bank-national-association",
"type": "Breach",
"date": "4/2020",
"severity": "60",
"impact": "3",
"explanation": "Attack with significant impact with internal employee data leaks"

{'affected_entities': [{'industry': 'Banking',
                        'location': 'California',
                        'name': 'JPMorgan Chase Bank, N.A.',
                        'type': 'Financial Institution'}],
 'attack_vector': 'Human Error',
 'data_breach': {'personally_identifiable_information': ['names',
                                                         'addresses',
                                                         'Social Security '
                                                         'numbers',
                                                         'email addresses'],
                 'sensitivity_of_data': 'High',
                 'type_of_data_compromised': ['personal information',
                                              'financial information']},
 'date_detected': '2020-12-23',
 'date_publicly_disclosed': '2020-12-23',
 'description': 'The California Office of the Attorney General reported a data '
                'breach involving JPMorgan Chase Bank, N.A. on December 23, '
                '2020. The breach occurred between April and November 2020, '
                'potentially affecting personal and financial information such '
                'as names, addresses, account numbers, Social Security '
                'numbers, and email addresses. The breach was due to a call '
                'center employee allowing an unauthorized third party to '
                'overhear a call and view their screen.',
 'impact': {'data_compromised': ['names',
                                 'addresses',
                                 'account numbers',
                                 'Social Security numbers',
                                 'email addresses']},
 'initial_access_broker': {'entry_point': 'Call center employee negligence'},
 'post_incident_analysis': {'root_causes': 'Call center employee allowing '
                                           'unauthorized access'},
 'references': [{'date_accessed': '2020-12-23',
                 'source': 'California Office of the Attorney General'}],
 'threat_actor': 'Unauthorized third party',
 'title': 'Data Breach at JPMorgan Chase Bank, N.A.',
 'type': 'Data Breach',
 'vulnerability_exploited': 'Unauthorized access due to call center employee '
                            'negligence'}

JPMorgan Chase Bank, N.A.

Grafana: Grafana GitHub Token Breach Led to Codebase Download and Extortion Attempt

Reqrea: Millions Of Hotel Guests' IDs Left Open Online In Massive Security Blunder

THORChain: More than $10 million stolen from crypto platform THORChain