Breach cyber

Keenan & Associates

Oct 9, 2015 1 min read
Keenan & Associates

The California Office of the Attorney General reported a data breach involving Keenan & Associates on December 1, 2015. The breach occurred on October 9, 2015, when documents containing personal information of employees and dependents were made accessible online due to a vendor's misconfiguration. The compromised information potentially included names, addresses, phone numbers, birth dates, medical plan information, and in some cases, Social Security numbers.

Source: https://oag.ca.gov/ecrime/databreach/reports/sb24-59125

TPRM report: https://www.rankiteo.com/company/keenan-and-associates

"id": "kee517072625",
"linkid": "keenan-and-associates",
"type": "Breach",
"date": "10/2015",
"severity": "60",
"impact": "3",
"explanation": "Attack with significant impact with internal employee data leaks"
{'affected_entities': [{'location': 'California',
                        'name': 'Keenan & Associates',
                        'type': 'Company'}],
 'attack_vector': 'Misconfiguration',
 'data_breach': {'personally_identifiable_information': True,
                 'sensitivity_of_data': 'High',
                 'type_of_data_compromised': ['names',
                                              'addresses',
                                              'phone numbers',
                                              'birth dates',
                                              'medical plan information',
                                              'Social Security numbers']},
 'date_detected': '2015-10-09',
 'date_publicly_disclosed': '2015-12-01',
 'description': 'The California Office of the Attorney General reported a data '
                'breach involving Keenan & Associates on December 1, 2015. The '
                'breach occurred on October 9, 2015, when documents containing '
                'personal information of employees and dependents were made '
                "accessible online due to a vendor's misconfiguration. The "
                'compromised information potentially included names, '
                'addresses, phone numbers, birth dates, medical plan '
                'information, and in some cases, Social Security numbers.',
 'impact': {'data_compromised': ['names',
                                 'addresses',
                                 'phone numbers',
                                 'birth dates',
                                 'medical plan information',
                                 'Social Security numbers']},
 'post_incident_analysis': {'root_causes': 'Vendor Misconfiguration'},
 'references': [{'date_accessed': '2015-12-01',
                 'source': 'California Office of the Attorney General'}],
 'title': 'Data Breach at Keenan & Associates',
 'type': 'Data Breach',
 'vulnerability_exploited': 'Vendor Misconfiguration'}
Published by
Jeremy C
Jeremy C
You might also like
Great! Next, complete checkout for full access to Rankiteo Blog.
Welcome back! You've successfully signed in.
You've successfully subscribed to Rankiteo Blog.
Success! Your account is fully activated, you now have access to all content.
Success! Your billing info has been updated.
Your billing was not updated.