Breach cyber

TIAA Kaspick, LLC

May 29, 2023 1 min read
TIAA Kaspick, LLC

The Maine Office of the Attorney General reported a data breach involving TIAA Kaspick, LLC on July 27, 2023. The breach occurred on May 29 and May 30, 2023, due to a hacking incident related to a vulnerability in the MOVEit Transfer software utilized by Pension Benefit Information, LLC, affecting 359 Maine residents and a total of 27,946 individuals. The types of compromised information include names, Social Security numbers, and dates of birth, with identity theft protection services offered to the affected individuals.

Source: https://www.maine.gov/agviewer/content/ag/985235c7-cb95-4be2-8792-a1252b4f8318/5efc3621-0782-4bc6-b8f0-85685f5778fb.shtml

TPRM report: https://www.rankiteo.com/company/tiaakaspick

"id": "tia949072525",
"linkid": "tiaakaspick",
"type": "Breach",
"date": "5/2023",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"
{'affected_entities': [{'customers_affected': 27946,
                        'industry': 'Financial Services',
                        'name': 'TIAA Kaspick, LLC',
                        'type': 'Company'}],
 'attack_vector': 'Hacking',
 'data_breach': {'number_of_records_exposed': 27946,
                 'personally_identifiable_information': True,
                 'sensitivity_of_data': 'High',
                 'type_of_data_compromised': ['names',
                                              'Social Security numbers',
                                              'dates of birth']},
 'date_detected': '2023-05-29',
 'date_publicly_disclosed': '2023-07-27',
 'description': 'The Maine Office of the Attorney General reported a data '
                'breach involving TIAA Kaspick, LLC on July 27, 2023. The '
                'breach occurred on May 29 and May 30, 2023, due to a hacking '
                'incident related to a vulnerability in the MOVEit Transfer '
                'software utilized by Pension Benefit Information, LLC, '
                'affecting 359 Maine residents and a total of 27,946 '
                'individuals. The types of compromised information include '
                'names, Social Security numbers, and dates of birth, with '
                'identity theft protection services offered to the affected '
                'individuals.',
 'impact': {'data_compromised': ['names',
                                 'Social Security numbers',
                                 'dates of birth'],
            'identity_theft_risk': 'High'},
 'references': [{'date_accessed': '2023-07-27',
                 'source': 'Maine Office of the Attorney General'}],
 'title': 'Data Breach at TIAA Kaspick, LLC',
 'type': 'Data Breach',
 'vulnerability_exploited': 'MOVEit Transfer software vulnerability'}
Published by
Jeremy C
Jeremy C
You might also like
Great! Next, complete checkout for full access to Rankiteo Blog.
Welcome back! You've successfully signed in.
You've successfully subscribed to Rankiteo Blog.
Success! Your account is fully activated, you now have access to all content.
Success! Your billing info has been updated.
Your billing was not updated.