OnDeck, a business lending company OnDeck experienced a data breach after an unauthorized party gained access to the company’s computer network and transferred sensitive consumer data to a private cloud storage account.
The compromised included the names, Social Security numbers, tax ID numbers, driver’s license numbers, passport numbers, financial details and medical or health insurance information of its customers.
The company shut down access to all affected devices, secured its network and investigated the incident.
Source: https://www.jdsupra.com/legalnews/ondeck-announces-data-breach-impacting-8105356/
TPRM report: https://scoringcyber.rankiteo.com/company/ondeck
"id": "ond23288622",
"linkid": "ondeck",
"type": "Breach",
"date": "03/2022",
"severity": "80",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"{'affected_entities': [{'industry': 'Financial Services',
'name': 'OnDeck',
'type': 'Business Lending Company'}],
'attack_vector': 'Unauthorized Access',
'data_breach': {'data_exfiltration': True,
'personally_identifiable_information': True,
'sensitivity_of_data': 'High',
'type_of_data_compromised': ['Personally Identifiable '
'Information',
'Financial Information',
'Medical Information']},
'description': 'OnDeck, a business lending company, experienced a data breach '
'after an unauthorized party gained access to the company’s '
'computer network and transferred sensitive consumer data to a '
'private cloud storage account.',
'impact': {'data_compromised': ['names',
'Social Security numbers',
'tax ID numbers',
'driver’s license numbers',
'passport numbers',
'financial details',
'medical or health insurance information']},
'investigation_status': 'Investigated',
'response': {'containment_measures': ['Shut down access to all affected '
'devices',
'Secured its network'],
'incident_response_plan_activated': True},
'threat_actor': 'Unauthorized Party',
'title': 'OnDeck Data Breach',
'type': 'Data Breach'}