The California Office of the Attorney General reported a data breach involving Pekin Insurance on February 22, 2022. The breach, which was discovered on January 21, 2022, involved unauthorized access to personally identifiable information (PII) due to an independent agent's login information being compromised. The breach occurred from December 4, 2021, to January 6, 2022.
Source: https://oag.ca.gov/ecrime/databreach/reports/sb24-551128
TPRM report: https://www.rankiteo.com/company/pekin-insurance
"id": "pek345072625",
"linkid": "pekin-insurance",
"type": "Breach",
"date": "12/2021",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"{'affected_entities': [{'industry': 'Insurance',
'name': 'Pekin Insurance',
'type': 'Insurance Company'}],
'attack_vector': 'Compromised Login Credentials',
'data_breach': {'personally_identifiable_information': 'Yes',
'type_of_data_compromised': 'Personally Identifiable '
'Information (PII)'},
'date_detected': '2022-01-21',
'date_publicly_disclosed': '2022-02-22',
'description': 'Unauthorized access to personally identifiable information '
"(PII) due to an independent agent's login information being "
'compromised.',
'impact': {'data_compromised': 'Personally Identifiable Information (PII)'},
'initial_access_broker': {'entry_point': 'Compromised Login Credentials'},
'post_incident_analysis': {'root_causes': 'Compromised Login Credentials'},
'references': [{'date_accessed': '2022-02-22',
'source': 'California Office of the Attorney General'}],
'title': 'Pekin Insurance Data Breach',
'type': 'Data Breach',
'vulnerability_exploited': 'Weak or Stolen Credentials'}