Vulnerability cyber

Vitality Group

May 30, 2023 1 min read
Vitality Group

The Vermont Office of the Attorney General reported a data breach involving Vitality Group on June 30, 2023. The breach was tied to a cybersecurity attack due to a zero-day vulnerability in the MOVEit Transfer application that affected personal information, including names, email addresses, social security numbers, genders, dates of birth, and home addresses of individuals associated with Ambry Genetics and REALM IDx.

Source: https://ago.vermont.gov/document/2023-06-30-realm-idx-vitality-group-data-breach-notice-consumers

TPRM report: https://www.rankiteo.com/company/the-vitality-group-inc-

"id": "the232072625",
"linkid": "the-vitality-group-inc-",
"type": "Vulnerability",
"date": "5/2023",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"
{'affected_entities': [{'customers_affected': ['Ambry Genetics', 'REALM IDx'],
                        'industry': 'Healthcare',
                        'name': 'Vitality Group',
                        'type': 'Company'}],
 'attack_vector': 'Zero-day vulnerability',
 'data_breach': {'personally_identifiable_information': True,
                 'sensitivity_of_data': 'High',
                 'type_of_data_compromised': ['names',
                                              'email addresses',
                                              'social security numbers',
                                              'genders',
                                              'dates of birth',
                                              'home addresses']},
 'date_detected': '2023-06-30',
 'date_publicly_disclosed': '2023-06-30',
 'description': 'The Vermont Office of the Attorney General reported a data '
                'breach involving Vitality Group on June 30, 2023. The breach '
                'was tied to a cybersecurity attack due to a zero-day '
                'vulnerability in the MOVEit Transfer application that '
                'affected personal information, including names, email '
                'addresses, social security numbers, genders, dates of birth, '
                'and home addresses of individuals associated with Ambry '
                'Genetics and REALM IDx.',
 'impact': {'data_compromised': ['names',
                                 'email addresses',
                                 'social security numbers',
                                 'genders',
                                 'dates of birth',
                                 'home addresses']},
 'references': [{'date_accessed': '2023-06-30',
                 'source': 'Vermont Office of the Attorney General'}],
 'title': 'Data Breach at Vitality Group',
 'type': 'Data Breach',
 'vulnerability_exploited': 'MOVEit Transfer application'}
Published by
Jeremy C
Jeremy C
You might also like
Great! Next, complete checkout for full access to Rankiteo Blog.
Welcome back! You've successfully signed in.
You've successfully subscribed to Rankiteo Blog.
Success! Your account is fully activated, you now have access to all content.
Success! Your billing info has been updated.
Your billing was not updated.