Miyoshi America, Inc.

Miyoshi America, Inc. suffered a data breach due to unauthorized access to an employee’s email account, discovered on April 21, 2023, though the intrusion occurred between March 2 and March 7, 2023. The incident exposed sensitive personal data, including Social Security numbers, affecting 123 individuals, among them one Maine resident. While the breach was contained to a single email account, the exposure of Social Security numbers poses a significant risk of identity theft and financial fraud. In response, the company offered 24 months of identity theft protection services to impacted individuals. The breach highlights vulnerabilities in email security protocols, particularly concerning employee accounts with access to personally identifiable information (PII). The delayed detection (over a month) further exacerbates the potential for misuse of the compromised data, though no evidence of active exploitation has been reported.

Source: https://www.maine.gov/agviewer/content/ag/985235c7-cb95-4be2-8792-a1252b4f8318/dcb2591f-d989-4eb5-8a17-d8bcc31c676d.shtml

TPRM report: https://www.rankiteo.com/company/miyoshi-europe-sas

"id": "miy951091725",
"linkid": "miyoshi-europe-sas",
"type": "Breach",
"date": "3/2023",
"severity": "60",
"impact": "3",
"explanation": "Attack with significant impact with internal employee data leaks"

{'affected_entities': [{'customers_affected': '123 individuals (including 1 '
                                              'Maine resident)',
                        'name': 'Miyoshi America, Inc.',
                        'type': 'Corporation'}],
 'attack_vector': 'Compromised Email Account',
 'customer_advisories': ['Offered 24 months of identity theft protection '
                         'services'],
 'data_breach': {'number_of_records_exposed': '123',
                 'personally_identifiable_information': 'Yes (Social Security '
                                                        'numbers)',
                 'sensitivity_of_data': 'High',
                 'type_of_data_compromised': ['Social Security numbers']},
 'date_detected': '2023-04-21',
 'description': 'The Maine Office of the Attorney General reported that '
                'Miyoshi America, Inc. experienced a data breach involving '
                'unauthorized access to an employee email account. The breach '
                'compromised Social Security numbers of 123 individuals, '
                'including 1 resident from Maine. Identity theft protection '
                'services were offered for 24 months.',
 'impact': {'data_compromised': ['Social Security numbers'],
            'identity_theft_risk': 'High (Social Security numbers exposed)',
            'systems_affected': ['Employee Email Account']},
 'initial_access_broker': {'entry_point': 'Employee Email Account'},
 'references': [{'source': 'Maine Office of the Attorney General'}],
 'regulatory_compliance': {'regulatory_notifications': ['Maine Office of the '
                                                        'Attorney General']},
 'response': {'remediation_measures': ['Offered 24 months of identity theft '
                                       'protection services']},
 'title': 'Miyoshi America, Inc. Data Breach via Unauthorized Email Access',
 'type': 'Data Breach'}

Miyoshi America, Inc.

UK Cabinet Office: Capita gave civil servants access to other people’s pensions data

NVIDIA: ShinyHunters Claim NVIDIA GeForce NOW User Database Theft

Trellix: Trellix Confirms Source Code Breach With Unauthorized Repository Access