The sensitive information of certain consumers of GreenSlate, LLC, a business services and payroll service company, was compromised in a cyber security incident.
One of its employees who had been terminated now had downloaded scanned documents containing some personal information pertaining to some of the company’s clients.
The files contained the name, date of birth, Social Security Number, Social Insurance Number, work authorization papers, and direct deposit bank account information of the clients.
GreenSlate notified the impacted clients of the breach.
Source: https://www.jdsupra.com/legalnews/data-breach-alert-greenslate-llc-3830615/
TPRM report: https://www.rankiteo.com/company/thisisgslate
"id": "gre17534522",
"linkid": "thisisgslate",
"type": "Breach",
"date": "6/2017",
"severity": "90",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"{'affected_entities': [{'industry': 'Business Services',
'name': 'GreenSlate, LLC',
'type': 'Business Services and Payroll Company'}],
'attack_vector': 'Insider Threat',
'data_breach': {'data_exfiltration': 'Yes',
'file_types_exposed': 'Scanned Documents',
'personally_identifiable_information': 'Yes',
'sensitivity_of_data': 'High',
'type_of_data_compromised': 'Personal Information'},
'description': 'An employee who was terminated downloaded scanned documents '
'containing personal information of some of the company’s '
'clients.',
'impact': {'data_compromised': ['Names',
'Dates of Birth',
'Social Security Numbers',
'Social Insurance Numbers',
'Work Authorization Papers',
'Direct Deposit Bank Account Information']},
'response': {'communication_strategy': 'Impacted clients were notified'},
'threat_actor': 'Terminated Employee',
'title': 'GreenSlate Data Breach',
'type': 'Data Breach',
'vulnerability_exploited': 'Unauthorized Access by Terminated Employee'}