The California Office of the Attorney General disclosed a data breach at Martinelli Winery in June 2015, reported by Missing Link Networks, Inc. The incident involved unauthorized access to sensitive customer data over a one-month breach window (April 1–30, 2015). Compromised information included customer names, credit/debit card numbers, payment addresses, passwords, and dates of birth. The exact number of affected individuals remains undisclosed, but the exposure of financial and personal details poses significant risks, including potential identity theft, fraud, and financial losses. The breach highlights vulnerabilities in the winery’s data security measures, particularly in safeguarding payment and personally identifiable information (PII). While no ransomware was mentioned, the scale and nature of the leaked data suggest severe reputational and financial repercussions for both the company and its customers.
Source: https://oag.ca.gov/ecrime/databreach/reports/sb24-56450
TPRM report: https://www.rankiteo.com/company/martinelli-winery-vineyards
"id": "mar1005091725",
"linkid": "martinelli-winery-vineyards",
"type": "Breach",
"date": "4/2015",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"{'affected_entities': [{'customers_affected': 'Unknown',
'industry': 'Food & Beverages (Winery)',
'location': 'California, USA',
'name': 'Martinelli Winery',
'type': 'Private Company'}],
'data_breach': {'data_exfiltration': 'Potential unauthorized access',
'number_of_records_exposed': 'Unknown',
'personally_identifiable_information': True,
'sensitivity_of_data': 'High',
'type_of_data_compromised': ['Personally Identifiable '
'Information (PII)',
'Payment Card Information']},
'date_publicly_disclosed': '2015-06-18',
'description': 'The California Office of the Attorney General reported a data '
'breach involving Martinelli Winery on June 18, 2015. The '
'incident, disclosed by Missing Link Networks, Inc., involved '
'the potential unauthorized access to customer names, credit '
'and debit card numbers, related payment addresses, passwords, '
'and dates of birth during a breach window from April 1, 2015 '
'to April 30, 2015. The number of individuals affected is '
'currently unknown.',
'impact': {'data_compromised': ['Customer names',
'Credit and debit card numbers',
'Payment addresses',
'Passwords',
'Dates of birth'],
'identity_theft_risk': 'High (PII and payment data exposed)',
'payment_information_risk': 'High (credit/debit card numbers '
'exposed)'},
'references': [{'date_accessed': '2015-06-18',
'source': 'California Office of the Attorney General'}],
'regulatory_compliance': {'regulatory_notifications': 'California Office of '
'the Attorney General'},
'response': {'law_enforcement_notified': 'California Office of the Attorney '
'General',
'third_party_assistance': 'Missing Link Networks, Inc. '
'(disclosure handler)'},
'title': 'Martinelli Winery Data Breach (2015)',
'type': 'Data Breach'}