Merrick Bank

The California Office of the Attorney General reported on December 28, 2023, that Merrick Bank experienced a data breach on May 31, 2023, involving the MOVEit Transfer software. The breach resulted in unauthorized access to personal information during a period of vulnerability from May 27 to May 31, 2023, although the number of individuals affected and the specific types of information compromised remain unknown.

Source: https://oag.ca.gov/ecrime/databreach/reports/sb24-578522

TPRM report: https://www.rankiteo.com/company/merrickbank

"id": "mer442080425",
"linkid": "merrickbank",
"type": "Vulnerability",
"date": "5/2023",
"severity": "25",
"impact": "1",
"explanation": "Attack without any consequences"

{'affected_entities': [{'industry': 'Banking',
                        'name': 'Merrick Bank',
                        'type': 'Financial Institution'}],
 'attack_vector': 'Unauthorized Access',
 'data_breach': {'type_of_data_compromised': 'Personal Information'},
 'date_detected': '2023-05-31',
 'date_publicly_disclosed': '2023-12-28',
 'description': 'The California Office of the Attorney General reported on '
                'December 28, 2023, that Merrick Bank experienced a data '
                'breach on May 31, 2023, involving the MOVEit Transfer '
                'software. The breach resulted in unauthorized access to '
                'personal information during a period of vulnerability from '
                'May 27 to May 31, 2023, although the number of individuals '
                'affected and the specific types of information compromised '
                'remain unknown.',
 'impact': {'data_compromised': 'Personal Information'},
 'references': [{'date_accessed': '2023-12-28',
                 'source': 'California Office of the Attorney General'}],
 'title': 'Merrick Bank Data Breach',
 'type': 'Data Breach',
 'vulnerability_exploited': 'MOVEit Transfer software vulnerability'}