Breach cyber

The Retirement Advantage, Inc.

Feb 10, 2018 1 min read
The Retirement Advantage, Inc.

The California Office of the Attorney General reported a data breach involving Applied Plan Administrators (APA), a division of The Retirement Advantage, Inc. (TRA), on March 28, 2018. The breach, caused by a phishing attack, allowed unauthorized access to an APA email account from February 10, 2018, to February 12, 2018, potentially exposing personal information of individuals including names, addresses, Social Security numbers, and financial information, although no specific evidence of data access was found. An estimated number of affected individuals is currently unknown.

Source: https://oag.ca.gov/ecrime/databreach/reports/sb24-134841

TPRM report: https://www.rankiteo.com/company/the-retirement-advantage

"id": "the424072725",
"linkid": "the-retirement-advantage",
"type": "Breach",
"date": "2/2018",
"severity": "60",
"impact": "3",
"explanation": "Attack with significant impact with internal employee data leaks"
{'affected_entities': [{'industry': 'Retirement Services',
                        'name': 'Applied Plan Administrators (APA)',
                        'type': 'Company'}],
 'attack_vector': 'Phishing',
 'data_breach': {'personally_identifiable_information': True,
                 'sensitivity_of_data': 'High',
                 'type_of_data_compromised': ['names',
                                              'addresses',
                                              'Social Security numbers',
                                              'financial information']},
 'date_detected': '2018-02-10',
 'date_publicly_disclosed': '2018-03-28',
 'description': 'The California Office of the Attorney General reported a data '
                'breach involving Applied Plan Administrators (APA), a '
                'division of The Retirement Advantage, Inc. (TRA), on March '
                '28, 2018. The breach, caused by a phishing attack, allowed '
                'unauthorized access to an APA email account from February 10, '
                '2018, to February 12, 2018, potentially exposing personal '
                'information of individuals including names, addresses, Social '
                'Security numbers, and financial information, although no '
                'specific evidence of data access was found. An estimated '
                'number of affected individuals is currently unknown.',
 'impact': {'data_compromised': ['names',
                                 'addresses',
                                 'Social Security numbers',
                                 'financial information']},
 'initial_access_broker': {'entry_point': 'Email Account'},
 'post_incident_analysis': {'root_causes': 'Phishing Attack'},
 'references': [{'date_accessed': '2018-03-28',
                 'source': 'California Office of the Attorney General'}],
 'title': 'Data Breach at Applied Plan Administrators (APA)',
 'type': 'Data Breach',
 'vulnerability_exploited': 'Email Account Compromise'}
Published by
Jeremy C
Jeremy C
You might also like
Great! Next, complete checkout for full access to Rankiteo Blog.
Welcome back! You've successfully signed in.
You've successfully subscribed to Rankiteo Blog.
Success! Your account is fully activated, you now have access to all content.
Success! Your billing info has been updated.
Your billing was not updated.