On September 23, 2022, the California Office of the Attorney General reported a data breach involving OneMain Financial Group, LLC. The breach occurred on July 22 and August 8, 2022, due to a vendor error that resulted in credit card transaction reports being accidentally shared, potentially exposing cardholder names, credit card numbers, and Social Security numbers. The exact number of individuals affected is currently unknown.
Source: https://oag.ca.gov/ecrime/databreach/reports/sb24-557549
TPRM report: https://www.rankiteo.com/company/onemain
"id": "one445072925",
"linkid": "onemain",
"type": "Breach",
"date": "7/2022",
"severity": "50",
"impact": "2",
"explanation": "Attack limited on finance or reputation"{'affected_entities': [{'industry': 'Finance',
'name': 'OneMain Financial Group, LLC',
'type': 'Financial Services'}],
'attack_vector': 'Vendor Error',
'data_breach': {'personally_identifiable_information': True,
'sensitivity_of_data': 'High',
'type_of_data_compromised': ['Cardholder Names',
'Credit Card Numbers',
'Social Security Numbers']},
'date_detected': '2022-09-23',
'date_publicly_disclosed': '2022-09-23',
'description': 'A data breach occurred at OneMain Financial Group, LLC due to '
'a vendor error, resulting in the accidental sharing of credit '
'card transaction reports, potentially exposing cardholder '
'names, credit card numbers, and Social Security numbers.',
'impact': {'data_compromised': ['Cardholder Names',
'Credit Card Numbers',
'Social Security Numbers']},
'post_incident_analysis': {'root_causes': 'Vendor Error'},
'references': [{'date_accessed': '2022-09-23',
'source': 'California Office of the Attorney General'}],
'title': 'Data Breach at OneMain Financial Group, LLC',
'type': 'Data Breach',
'vulnerability_exploited': 'Accidental Sharing of Data'}