The California Office of the Attorney General reported that Travis Credit Union experienced a data breach involving a skimming device placed on an ATM at their Dixon branch, affecting debit card transactions between July 16, 2018, and August 22, 2018. Compromised information may include customer names, card numbers, expiration dates, and personal identification numbers (PINs), although the exact number of affected individuals is unknown.
Source: https://oag.ca.gov/ecrime/databreach/reports/sb24-140134
TPRM report: https://www.rankiteo.com/company/traviscu
"id": "tra118072825",
"linkid": "traviscu",
"type": "Breach",
"date": "7/2018",
"severity": "60",
"impact": "2",
"explanation": "Attack limited on finance or reputation"{'affected_entities': [{'industry': 'Banking',
'location': 'Dixon, California',
'name': 'Travis Credit Union',
'type': 'Financial Institution'}],
'attack_vector': 'Skimming Device',
'data_breach': {'personally_identifiable_information': True,
'sensitivity_of_data': 'High',
'type_of_data_compromised': ['Customer Names',
'Card Numbers',
'Expiration Dates',
'PINs']},
'date_detected': '2018-08-22',
'description': 'A skimming device was placed on an ATM at the Dixon branch of '
'Travis Credit Union, compromising debit card transactions '
'between July 16, 2018, and August 22, 2018.',
'impact': {'data_compromised': ['Customer Names',
'Card Numbers',
'Expiration Dates',
'PINs'],
'systems_affected': ['ATM']},
'initial_access_broker': {'entry_point': 'ATM'},
'motivation': 'Financial Gain',
'post_incident_analysis': {'root_causes': 'Physical Security Vulnerability'},
'references': [{'source': 'California Office of the Attorney General'}],
'title': 'Travis Credit Union ATM Skimming Incident',
'type': 'Data Breach',
'vulnerability_exploited': 'Physical Security'}