The California Office of the Attorney General reported that Principal Life Insurance Company experienced a data breach due to a software coding issue from late 2019. The breach affected individuals whose personal information (name, Social Security number, birthdate) may have been intermittently misdirected to another customer on their website. The breach was reported on May 7, 2020, with specific breach incidents occurring on December 12, 2019, December 13, 2019, and December 16, 2019.
Source: https://oag.ca.gov/ecrime/databreach/reports/sb24-189795
TPRM report: https://www.rankiteo.com/company/principal-financial-group
"id": "pri612072525",
"linkid": "principal-financial-group",
"type": "Breach",
"date": "12/2019",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"{'affected_entities': [{'industry': 'Insurance',
'name': 'Principal Life Insurance Company',
'type': 'Insurance Company'}],
'attack_vector': 'Software Coding Issue',
'data_breach': {'personally_identifiable_information': True,
'sensitivity_of_data': 'High',
'type_of_data_compromised': ['name',
'Social Security number',
'birthdate']},
'date_detected': '2020-05-07',
'date_publicly_disclosed': '2020-05-07',
'description': 'A data breach occurred at Principal Life Insurance Company '
'due to a software coding issue, resulting in the intermittent '
'misdirection of personal information to other customers on '
'their website.',
'impact': {'data_compromised': ['name',
'Social Security number',
'birthdate']},
'post_incident_analysis': {'root_causes': 'Software Coding Issue'},
'references': [{'date_accessed': '2020-05-07',
'source': 'California Office of the Attorney General'}],
'title': 'Principal Life Insurance Company Data Breach',
'type': 'Data Breach',
'vulnerability_exploited': 'Software Coding Issue'}