Nuna Baby Essentials, Inc.

The Washington State Office of the Attorney General reported a cybersecurity incident at Nuna Baby Essentials, Inc. that potentially affected approximately 816 residents. The incident involved malicious code present on Nuna’s website from March 26, 2020, to April 7, 2021. The code was discovered on December 7, 2021, and the notification was provided on January 21, 2022. The incident may have compromised payment card information.

Source: https://www.atg.wa.gov/data-breach-notifications | https://data.wa.gov/resource/sb4j-ca4h.json?id=11374

TPRM report: https://www.rankiteo.com/company/nunababy

"id": "nun219072625",
"linkid": "nunababy",
"type": "Cyber Attack",
"date": "3/2020",
"severity": "60",
"impact": "2",
"explanation": "Attack limited on finance or reputation"

{'affected_entities': [{'customers_affected': 816,
                        'industry': 'Baby Products',
                        'name': 'Nuna Baby Essentials, Inc.',
                        'type': 'Company'}],
 'attack_vector': 'Malicious Code',
 'data_breach': {'number_of_records_exposed': 816,
                 'sensitivity_of_data': 'High',
                 'type_of_data_compromised': 'Payment Card Information'},
 'date_detected': '2021-12-07',
 'date_publicly_disclosed': '2022-01-21',
 'description': 'Nuna Baby Essentials, Inc. experienced a cybersecurity '
                'incident that may have affected approximately 816 residents, '
                'with payment card information potentially compromised.',
 'impact': {'data_compromised': ['Payment Card Information'],
            'payment_information_risk': True,
            'systems_affected': ['Website']},
 'references': [{'source': 'Washington State Office of the Attorney General'}],
 'title': 'Nuna Baby Essentials Cybersecurity Incident',
 'type': 'Data Breach'}