Overseas Shipholding Group, Inc.

The Vermont Office of the Attorney General disclosed on December 2, 2024, that Overseas Shipholding Group, Inc. suffered a data breach due to unauthorized access to its computer systems. The incident exposed sensitive personal information, including Social Security numbers and passport numbers of individuals, though the exact number of affected parties remains undisclosed. The breach highlights a significant compromise of personally identifiable information (PII), raising concerns over potential identity theft, financial fraud, or misuse of the exposed data. Given the nature of the stolen data highly sensitive identifiers this incident poses a severe risk to the impacted individuals, particularly if exploited by malicious actors. The company has not yet provided details on containment measures, remediation efforts, or whether regulatory notifications beyond the Attorney General’s office have been issued. The breach underscores vulnerabilities in the organization’s cybersecurity posture, particularly in safeguarding critical employee or customer data from external threats.

Source: https://ago.vermont.gov/document/2024-12-02-overseas-shipholding-group-data-breach-notice-consumers

TPRM report: https://www.rankiteo.com/company/osg-ship-management

"id": "osg619090125",
"linkid": "osg-ship-management",
"type": "Breach",
"date": "10/2024",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"

{'affected_entities': [{'customers_affected': 'Unknown',
                        'industry': 'Maritime / Shipping',
                        'name': 'Overseas Shipholding Group, Inc.',
                        'type': 'Corporation'}],
 'data_breach': {'number_of_records_exposed': 'Unknown',
                 'personally_identifiable_information': True,
                 'sensitivity_of_data': 'High (PII including SSNs and passport '
                                        'numbers)',
                 'type_of_data_compromised': ['Personal Information',
                                              'Social Security numbers',
                                              'passport numbers']},
 'date_publicly_disclosed': '2024-12-02',
 'description': 'The Vermont Office of the Attorney General reported that '
                'Overseas Shipholding Group, Inc. experienced a data breach '
                'involving unauthorized access to its computer systems. The '
                'breach potentially exposed personal information, including '
                'Social Security numbers and passport numbers, but the number '
                'of individuals affected is unknown.',
 'impact': {'data_compromised': ['Social Security numbers', 'passport numbers'],
            'identity_theft_risk': 'Potential (due to exposed PII)',
            'systems_affected': ['computer systems']},
 'references': [{'date_accessed': '2024-12-02',
                 'source': 'Vermont Office of the Attorney General'}],
 'regulatory_compliance': {'regulatory_notifications': ['Vermont Office of the '
                                                        'Attorney General']},
 'title': 'Overseas Shipholding Group, Inc. Data Breach',
 'type': 'Data Breach'}

Overseas Shipholding Group, Inc.

Pax8: Cloud marketplace Pax8 accidentally exposes data on 1,800 MSP partners

Dell: Alleged Dell data compromise raises skepticism

Free Mobile: French data regulator fines telco subsidiaries $48 million over data breach