On August 26, 2019, BookShark LLC experienced a data breach due to unauthorized malicious code injected into its website. The incident, reported by the California Office of the Attorney General on October 25, 2019, exposed sensitive customer information over a five-month period (March 11, 2019, to August 26, 2019). Compromised data included customer names, physical addresses, phone numbers, email addresses, payment card details (e.g., credit/debit card numbers), and account credentials (usernames/passwords). The breach affected an undetermined number of individuals, raising concerns over potential identity theft, financial fraud, and unauthorized account access. The unauthorized code likely enabled attackers to harvest data during transactions or interactions with the website. While the exact scope of misuse remains unclear, the exposure of payment card details and login credentials poses significant risks for phishing, fraudulent transactions, and further cyberattacks targeting affected customers. The incident underscores vulnerabilities in web application security and the critical need for robust monitoring to detect and mitigate such intrusions promptly.
Source: https://oag.ca.gov/ecrime/databreach/reports/sb24-183846
TPRM report: https://www.rankiteo.com/company/sonlight
"id": "son636090125",
"linkid": "sonlight",
"type": "Breach",
"date": "3/2019",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"{'affected_entities': [{'customers_affected': 'Undetermined number (exposure '
'window: March 11, 2019 – August '
'26, 2019)',
'industry': 'Education (Homeschooling Curriculum)',
'location': 'United States (Colorado-based)',
'name': 'BookShark LLC',
'type': 'Private Company'}],
'attack_vector': 'Unauthorized code on website (likely Magecart-style '
'skimming)',
'data_breach': {'data_exfiltration': 'Likely (via unauthorized code)',
'number_of_records_exposed': 'Undetermined',
'personally_identifiable_information': ['Names',
'Addresses',
'Phone numbers',
'Email addresses'],
'sensitivity_of_data': 'High',
'type_of_data_compromised': ['Personally Identifiable '
'Information (PII)',
'Payment Card Data',
'Account Credentials']},
'date_detected': '2019-08-26',
'date_publicly_disclosed': '2019-10-25',
'description': 'The California Office of the Attorney General reported a data '
'breach incident involving BookShark LLC on October 25, 2019. '
'The breach occurred on August 26, 2019, due to unauthorized '
"code on the company's website, potentially exposing customer "
'names, addresses, phone numbers, email addresses, payment '
'card details, and account credentials from March 11, 2019 to '
'August 26, 2019, affecting an undetermined number of '
'individuals.',
'impact': {'data_compromised': ['Customer names',
'Addresses',
'Phone numbers',
'Email addresses',
'Payment card details',
'Account credentials'],
'identity_theft_risk': 'High (due to exposed PII and payment data)',
'payment_information_risk': 'High (payment card details exposed)',
'systems_affected': ['Company website']},
'initial_access_broker': {'entry_point': 'Company website (via unauthorized '
'code injection)',
'high_value_targets': ['Payment card data',
'Customer PII']},
'post_incident_analysis': {'root_causes': ['Unauthorized code on website '
'(likely third-party skimming '
'attack)']},
'references': [{'source': 'California Office of the Attorney General'}],
'regulatory_compliance': {'regulations_violated': ['California Consumer '
'Privacy Act (CCPA) - '
'likely'],
'regulatory_notifications': ['California Office of '
'the Attorney '
'General']},
'response': {'communication_strategy': 'Public disclosure via California AG '
'report (October 25, 2019)'},
'title': 'BookShark LLC Data Breach (2019)',
'type': 'Data Breach'}