The Colorado Attorney General's Office reported a data breach involving Kronos, a payroll software vendor used by Vail Health, on January 14, 2022. The breach was due to a ransomware attack, but it is currently unknown whether any personal information was accessed or compromised. The types of information potentially involved include names, addresses, dates of birth, social security numbers, and bank account information.
TPRM report: https://scoringcyber.rankiteo.com/company/kronos
"id": "kro556072625",
"linkid": "kronos",
"type": "Ransomware",
"date": "1/2022",
"severity": "50",
"impact": "1",
"explanation": "Attack without any consequences"{'affected_entities': [{'industry': 'Healthcare',
'location': 'Colorado',
'name': 'Vail Health',
'type': 'Healthcare'}],
'attack_vector': 'Ransomware',
'data_breach': {'personally_identifiable_information': True,
'type_of_data_compromised': ['names',
'addresses',
'dates of birth',
'social security numbers',
'bank account information']},
'date_detected': '2022-01-14',
'date_publicly_disclosed': '2022-01-14',
'description': "The Colorado Attorney General's Office reported a data breach "
'involving Kronos, a payroll software vendor used by Vail '
'Health, on January 14, 2022. The breach was due to a '
'ransomware attack, but it is currently unknown whether any '
'personal information was accessed or compromised. The types '
'of information potentially involved include names, addresses, '
'dates of birth, social security numbers, and bank account '
'information.',
'impact': {'data_compromised': ['names',
'addresses',
'dates of birth',
'social security numbers',
'bank account information']},
'references': [{'date_accessed': '2022-01-14',
'source': "Colorado Attorney General's Office"}],
'title': 'Data Breach at Kronos Affecting Vail Health',
'type': 'Data Breach'}