TengoInternet, Inc.

On October 26, 2018, the California Office of the Attorney General disclosed a data breach at TengoInternet, Inc., impacting approximately 59,835 California residents. The incident involved unauthorized access to consumer usernames and passwords linked to TengoInternet accounts. While the breach exposed sensitive login credentials, there was no confirmed evidence of fraudulent misuse of the compromised data at the time of reporting. The exposure primarily risked potential account takeovers, credential stuffing attacks, or further unauthorized access if users reused passwords across other platforms. The breach highlighted vulnerabilities in securing customer authentication data, though the lack of immediate fraudulent activity suggested containment before exploitation. However, the incident still posed reputational risks and potential downstream financial threats if affected users faced secondary attacks due to credential reuse.

Source: https://oag.ca.gov/ecrime/databreach/reports/sb24-141167

TPRM report: https://www.rankiteo.com/company/tengointernet

"id": "ten908082125",
"linkid": "tengointernet",
"type": "Breach",
"date": "4/2018",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"

{'affected_entities': [{'customers_affected': 59835,
                        'location': 'California, USA',
                        'name': 'TengoInternet, Inc.',
                        'type': 'Private Company'}],
 'data_breach': {'data_exfiltration': 'Likely (unauthorized access confirmed)',
                 'number_of_records_exposed': 59835,
                 'personally_identifiable_information': 'Potential (usernames '
                                                        'may include PII)',
                 'sensitivity_of_data': 'Moderate (account credentials)',
                 'type_of_data_compromised': ['usernames', 'passwords']},
 'date_publicly_disclosed': '2018-10-26',
 'description': 'The California Office of the Attorney General reported that '
                'TengoInternet, Inc. experienced a data breach potentially '
                'affecting the personal information of 59,835 California '
                'residents. The incident involved unauthorized access to '
                'consumer usernames and passwords for TengoInternet accounts, '
                'although no confirmation of fraudulent misuse has been '
                'reported.',
 'impact': {'data_compromised': ['usernames', 'passwords'],
            'identity_theft_risk': 'Potential (no confirmed misuse)'},
 'investigation_status': 'Disclosed (no confirmed misuse reported)',
 'references': [{'date_accessed': '2018-10-26',
                 'source': 'California Office of the Attorney General'}],
 'regulatory_compliance': {'regulatory_notifications': ['California Office of '
                                                        'the Attorney '
                                                        'General']},
 'title': 'TengoInternet, Inc. Data Breach (2018)',
 'type': 'Data Breach'}

TengoInternet, Inc.

Grafana: Grafana GitHub Token Breach Led to Codebase Download and Extortion Attempt

Reqrea: Millions Of Hotel Guests' IDs Left Open Online In Massive Security Blunder

Belambra, Gîtes de France and Pierre & Vacances-Center Parcs: Gîtes de France among three booking websites to be hit by cyberattack