In December 2021, Block, Inc., the parent company of Cash App, disclosed a significant cybersecurity incident affecting their Cash App Investing service. A former employee managed to download internal reports containing information about more than 8 million current and former Cash App Investing customers. The breach raised serious concerns about the management of sensitive data and the measures in place to restrict access to such data once an employee's tenure has ended. The reports stolen did not include personally identifiable information such as usernames, passwords, or Social Security Numbers, which mitigated the potential fallout. However, the incident highlighted the risks associated with insider threats and the importance of robust access controls and monitoring to safeguard against unauthorized access to sensitive information.
Source: https://www.ekransystem.com/en/blog/top-10-cyber-security-breaches
"id": "squ409050824",
"linkid": "square",
"type": "Cyber Attack",
"date": "12/2021",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"