On February 4, 2022, the Maine Office of the Attorney General reported a data breach incident involving CMS Companies. The breach occurred between July 17, 2021, and July 20, 2021, leading to the potential exposure of 2,284 individuals' personal information, including names, addresses, Social Security numbers, and financial account information, due to an external system breach identified as hacking. Out of those affected, three Maine residents were specifically notified, and CMS provided identity theft protection services for 24 months.
TPRM report: https://www.rankiteo.com/company/the-cms-companies
"id": "the525080525",
"linkid": "the-cms-companies",
"type": "Breach",
"date": "7/2021",
"severity": "100",
"impact": "5",
"explanation": "Attack threatening the organization's existence"{'affected_entities': [{'customers_affected': 2284,
'name': 'CMS Companies',
'type': 'Company'}],
'attack_vector': 'External System Breach',
'data_breach': {'number_of_records_exposed': 2284,
'personally_identifiable_information': True,
'sensitivity_of_data': 'High',
'type_of_data_compromised': ['names',
'addresses',
'Social Security numbers',
'financial account information']},
'date_detected': '2022-02-04',
'date_publicly_disclosed': '2022-02-04',
'description': 'A data breach incident involving CMS Companies resulted in '
'the potential exposure of personal information of 2,284 '
'individuals, including names, addresses, Social Security '
'numbers, and financial account information.',
'impact': {'data_compromised': ['names',
'addresses',
'Social Security numbers',
'financial account information'],
'identity_theft_risk': 'High',
'payment_information_risk': 'High'},
'references': [{'date_accessed': '2022-02-04',
'source': 'Maine Office of the Attorney General'}],
'title': 'CMS Companies Data Breach',
'type': 'Data Breach'}