cyber Breach

RiverSource

May 11, 2023 1 min read
RiverSource

Riversource, LLC experienced a data breach after an unauthorized party gained access to an employee’s email account containing confidential consumer information.'

The incident resulted in an unauthorized party gaining access to consumers’ names, dates of birth, Social Security numbers, driver’s license numbers, health insurance policy numbers, and financial account numbers.

Riversource sent out data breach notification letters to all individuals whose information was impacted by the recent data security incident.

Source: https://www.jdsupra.com/legalnews/riversource-llc-files-notice-of-data-1490633/

TPRM report: https://scoringcyber.rankiteo.com/company/riversource

"id": "riv231011123",
"linkid": "riversource",
"type": "Breach",
"date": "12/2022",
"severity": "100",
"impact": "5",
"explanation": "Attack threatening the organization’s existence"
{'affected_entities': [{'name': 'Riversource, LLC', 'type': 'Company'}],
 'attack_vector': 'Email Account Compromise',
 'customer_advisories': 'Data breach notification letters sent to affected '
                        'individuals',
 'data_breach': {'personally_identifiable_information': ['names',
                                                         'dates of birth',
                                                         'Social Security '
                                                         'numbers',
                                                         'driver’s license '
                                                         'numbers'],
                 'sensitivity_of_data': 'High',
                 'type_of_data_compromised': ['Personally Identifiable '
                                              'Information',
                                              'Financial Information',
                                              'Health Information']},
 'description': 'Riversource, LLC experienced a data breach after an '
                'unauthorized party gained access to an employee’s email '
                'account containing confidential consumer information. The '
                'incident resulted in an unauthorized party gaining access to '
                'consumers’ names, dates of birth, Social Security numbers, '
                'driver’s license numbers, health insurance policy numbers, '
                'and financial account numbers.',
 'impact': {'data_compromised': ['names',
                                 'dates of birth',
                                 'Social Security numbers',
                                 'driver’s license numbers',
                                 'health insurance policy numbers',
                                 'financial account numbers']},
 'initial_access_broker': {'entry_point': 'Email Account'},
 'response': {'communication_strategy': 'Data breach notification letters sent '
                                        'to affected individuals'},
 'title': 'Riversource, LLC Data Breach',
 'type': 'Data Breach',
 'vulnerability_exploited': 'Weak email security'}
Published by
Harshit Kaur Bhatia
Harshit Kaur Bhatia
You might also like
Great! Next, complete checkout for full access to Rankiteo Blog.
Welcome back! You've successfully signed in.
You've successfully subscribed to Rankiteo Blog.
Success! Your account is fully activated, you now have access to all content.
Success! Your billing info has been updated.
Your billing was not updated.