On September 29, 2020, the Maine Office of the Attorney General reported a data breach involving Spire Hospitality LLC. The breach occurred on April 21, 2020, when unauthorized access to an employee's email account was detected, which potentially compromised Social Security numbers and affected approximately 3,244 individuals. Written notice was provided, and identity theft protection services were offered for 12 months through Kroll.
TPRM report: https://www.rankiteo.com/company/spirehotels
"id": "spi450080425",
"linkid": "spirehotels",
"type": "Breach",
"date": "4/2020",
"severity": "60",
"impact": "3",
"explanation": "Attack with significant impact with internal employee data leaks"{'affected_entities': [{'customers_affected': 3244,
'industry': 'Hospitality',
'name': 'Spire Hospitality LLC',
'type': 'Company'}],
'attack_vector': 'Email Compromise',
'data_breach': {'number_of_records_exposed': 3244,
'personally_identifiable_information': True,
'sensitivity_of_data': 'High',
'type_of_data_compromised': ['Social Security numbers']},
'date_detected': '2020-04-21',
'date_publicly_disclosed': '2020-09-29',
'description': "Unauthorized access to an employee's email account "
'potentially compromised Social Security numbers affecting '
'approximately 3,244 individuals.',
'impact': {'data_compromised': ['Social Security numbers'],
'identity_theft_risk': 'High'},
'initial_access_broker': {'entry_point': 'Email Compromise'},
'references': [{'date_accessed': '2020-09-29',
'source': 'Maine Office of the Attorney General'}],
'response': {'communication_strategy': 'Written notice provided',
'third_party_assistance': ['Kroll']},
'title': 'Spire Hospitality LLC Data Breach',
'type': 'Data Breach',
'vulnerability_exploited': 'Unauthorized Access'}