The Brookfield wellness engagement vendor, Vitality Group, Inc., reported a data breach on June 1, 2023, involving a security vulnerability in the MOVEit file transfer program that occurred on May 30, 2023. The breach potentially exposed the Social Security numbers and other personal information of certain U.S.-based employees and their partners or spouses. Vitality is offering 2 years of credit monitoring through Experian to affected individuals.
TPRM report: https://www.rankiteo.com/company/the-vitality-group-inc-
"id": "the315072625",
"linkid": "the-vitality-group-inc-",
"type": "Vulnerability",
"date": "5/2023",
"severity": "60",
"impact": "3",
"explanation": "Attack with significant impact with internal employee data leaks"{'affected_entities': [{'industry': 'Health and Wellness',
'location': 'United States',
'name': 'Vitality Group, Inc.',
'type': 'Wellness Engagement Vendor'}],
'attack_vector': 'Security Vulnerability',
'data_breach': {'personally_identifiable_information': True,
'sensitivity_of_data': 'High',
'type_of_data_compromised': ['Social Security numbers',
'Other personal information']},
'date_detected': '2023-05-30',
'date_publicly_disclosed': '2023-06-01',
'description': 'The Brookfield wellness engagement vendor, Vitality Group, '
'Inc., reported a data breach on June 1, 2023, involving a '
'security vulnerability in the MOVEit file transfer program '
'that occurred on May 30, 2023. The breach potentially exposed '
'the Social Security numbers and other personal information of '
'certain U.S.-based employees and their partners or spouses. '
'Vitality is offering 2 years of credit monitoring through '
'Experian to affected individuals.',
'impact': {'data_compromised': ['Social Security numbers',
'Other personal information']},
'references': [{'source': 'Vitality Group, Inc.'}],
'title': 'Vitality Group Data Breach',
'type': 'Data Breach',
'vulnerability_exploited': 'MOVEit file transfer program'}