The California Office of the Attorney General reported a data breach involving Sunrun Inc. on February 2, 2017. The breach occurred on January 20, 2017, and involved phishing that compromised employee W-2 forms containing sensitive personal information such as names, addresses, Social Security numbers, and salary details.
Source: https://oag.ca.gov/ecrime/databreach/reports/sb24-66148
TPRM report: https://www.rankiteo.com/company/sunrun
"id": "sun049072425",
"linkid": "sunrun",
"type": "Breach",
"date": "1/2017",
"severity": "60",
"impact": "3",
"explanation": "Attack with significant impact with internal employee data leaks"{'affected_entities': [{'industry': 'Solar Energy',
'location': 'California',
'name': 'Sunrun Inc.',
'type': 'Company'}],
'attack_vector': 'Phishing',
'data_breach': {'file_types_exposed': ['W-2 forms'],
'personally_identifiable_information': True,
'sensitivity_of_data': 'High',
'type_of_data_compromised': ['names',
'addresses',
'Social Security numbers',
'salary details']},
'date_detected': '2017-01-20',
'date_publicly_disclosed': '2017-02-02',
'description': 'The California Office of the Attorney General reported a data '
'breach involving Sunrun Inc. on February 2, 2017. The breach '
'occurred on January 20, 2017, and involved phishing that '
'compromised employee W-2 forms containing sensitive personal '
'information such as names, addresses, Social Security '
'numbers, and salary details.',
'impact': {'data_compromised': ['names',
'addresses',
'Social Security numbers',
'salary details']},
'references': [{'date_accessed': '2017-02-02',
'source': 'California Office of the Attorney General'}],
'title': 'Data Breach at Sunrun Inc.',
'type': 'Data Breach'}