On April 28, 2023, the Vermont Office of the Attorney General reported a data breach involving The Cincinnati Insurance Company. The breach occurred on April 4, 2023, when an employee inadvertently emailed personal information, including names, addresses, dates of birth, Social Security numbers, and credit report information to a general agency mailbox. The number of individuals affected by the breach is currently unknown.
TPRM report: https://www.rankiteo.com/company/the-cincinnati-insurance-companies
"id": "the754072625",
"linkid": "the-cincinnati-insurance-companies",
"type": "Breach",
"date": "4/2023",
"severity": "60",
"impact": "3",
"explanation": "Attack with significant impact with internal employee data leaks"{'affected_entities': [{'industry': 'Insurance',
'name': 'The Cincinnati Insurance Company',
'type': 'Insurance Company'}],
'attack_vector': 'Human Error',
'data_breach': {'personally_identifiable_information': ['Names',
'Addresses',
'Dates of Birth',
'Social Security '
'Numbers'],
'sensitivity_of_data': 'High',
'type_of_data_compromised': ['Personal Information',
'Credit Report Information']},
'date_detected': '2023-04-04',
'date_publicly_disclosed': '2023-04-28',
'description': 'An employee inadvertently emailed personal information to a '
'general agency mailbox.',
'impact': {'data_compromised': ['Names',
'Addresses',
'Dates of Birth',
'Social Security Numbers',
'Credit Report Information']},
'post_incident_analysis': {'root_causes': 'Human Error'},
'references': [{'date_accessed': '2023-04-28',
'source': 'Vermont Office of the Attorney General'}],
'title': 'Data Breach at The Cincinnati Insurance Company',
'type': 'Data Breach',
'vulnerability_exploited': 'Inadvertent Email'}