State Farm Mutual Automobile Insurance Company

The California Office of the Attorney General disclosed a data breach at State Farm Mutual Automobile Insurance Company, where user IDs and passwords were potentially accessed from the dark web between July 6, 2019, and July 22, 2019. While the exact number of affected individuals and the full scope of compromised data remain undisclosed, the investigation confirmed that no sensitive personal information was exposed, and no fraudulent activity occurred as a result. The breach was limited to credentials, with no evidence of misuse or further escalation into more critical systems. The company likely took corrective measures to mitigate risks, such as password resets or enhanced monitoring, but the incident did not result in financial, reputational, or operational harm beyond the initial exposure of non-sensitive login details.

Source: https://oag.ca.gov/ecrime/databreach/reports/sb24-149396

TPRM report: https://www.rankiteo.com/company/state-farm-mutual-auto-ins

"id": "sta019091825",
"linkid": "state-farm-mutual-auto-ins",
"type": "Breach",
"date": "7/2019",
"severity": "25",
"impact": "1",
"explanation": "Attack without any consequences"

{'affected_entities': [{'customers_affected': 'Unknown (affected between July '
                                              '6, 2019, and July 22, 2019)',
                        'industry': 'Insurance',
                        'location': 'United States (California)',
                        'name': 'State Farm Mutual Automobile Insurance '
                                'Company',
                        'type': 'Insurance Company'}],
 'attack_vector': 'Dark Web Credential Exposure',
 'data_breach': {'number_of_records_exposed': 'Unknown',
                 'personally_identifiable_information': 'None',
                 'sensitivity_of_data': 'Low (no sensitive personal '
                                        'information exposed)',
                 'type_of_data_compromised': ['User IDs', 'Passwords']},
 'description': 'The California Office of the Attorney General reported that '
                'State Farm Mutual Automobile Insurance Company experienced a '
                'data breach involving user IDs and passwords potentially '
                'accessed from the dark web, affecting individuals between '
                'July 6, 2019, and July 22, 2019. The specific number of '
                'individuals affected and types of compromised information are '
                'unknown, but no sensitive personal information was viewable '
                'and no fraudulent activity occurred.',
 'impact': {'data_compromised': ['User IDs', 'Passwords'],
            'identity_theft_risk': 'None (no sensitive personal information '
                                   'viewable)'},
 'initial_access_broker': {'data_sold_on_dark_web': 'Likely (user IDs and '
                                                    'passwords)',
                           'entry_point': 'Dark Web (exposed credentials)'},
 'references': [{'source': 'California Office of the Attorney General'}],
 'regulatory_compliance': {'regulatory_notifications': 'California Office of '
                                                       'the Attorney General'},
 'title': 'State Farm Data Breach Involving Dark Web Credentials',
 'type': 'Data Breach'}

State Farm Mutual Automobile Insurance Company

Grafana: Grafana GitHub Token Breach Led to Codebase Download and Extortion Attempt

Reqrea: Millions Of Hotel Guests' IDs Left Open Online In Massive Security Blunder

Belambra, Gîtes de France and Pierre & Vacances-Center Parcs: Gîtes de France among three booking websites to be hit by cyberattack