On December 23, 2020, the California Office of the Attorney General reported a data breach involving Tree Top, Inc. and its subsidiary Northwest Naturals, LLC, which occurred on November 10, 2020. Unauthorized third parties accessed Tree Top's computer network through a compromised user account and employed ransomware to encrypt servers containing personal information, potentially affecting an unknown number of individuals.
Source: https://oag.ca.gov/ecrime/databreach/reports/sb24-197530
TPRM report: https://www.rankiteo.com/company/tree-top-inc.
"id": "tre900072525",
"linkid": "tree-top-inc.",
"type": "Ransomware",
"date": "11/2020",
"severity": "100",
"impact": "5",
"explanation": "Attack threatening the organization's existence"{'affected_entities': [{'customers_affected': 'Unknown number of individuals',
'industry': 'Food and Beverage',
'name': 'Tree Top, Inc.',
'type': 'Company'},
{'customers_affected': 'Unknown number of individuals',
'industry': 'Food and Beverage',
'name': 'Northwest Naturals, LLC',
'type': 'Subsidiary'}],
'attack_vector': 'Compromised User Account',
'data_breach': {'number_of_records_exposed': 'Unknown',
'type_of_data_compromised': 'Personal Information'},
'date_detected': '2020-11-10',
'date_publicly_disclosed': '2020-12-23',
'description': "Unauthorized third parties accessed Tree Top's computer "
'network through a compromised user account and employed '
'ransomware to encrypt servers containing personal '
'information.',
'impact': {'data_compromised': 'Personal Information',
'systems_affected': 'Servers'},
'initial_access_broker': {'entry_point': 'Compromised User Account'},
'ransomware': {'data_encryption': 'Yes'},
'references': [{'date_accessed': '2020-12-23',
'source': 'California Office of the Attorney General'}],
'threat_actor': 'Unauthorized third parties',
'title': 'Tree Top, Inc. Data Breach',
'type': 'Data Breach, Ransomware'}