On September 19, 2023, the California Office of the Attorney General reported a data breach involving Unum Group that occurred between May 31, 2023, and June 1, 2023. The breach was due to a security vulnerability in the MOVEit Transfer application, potentially compromising personal information, including names, Social Security numbers, and other sensitive data; the specific number of individuals affected is unknown.
Source: https://oag.ca.gov/ecrime/databreach/reports/sb24-573867
TPRM report: https://www.rankiteo.com/company/unum
"id": "unu050072425",
"linkid": "unum",
"type": "Vulnerability",
"date": "5/2023",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"{'affected_entities': [{'industry': 'Insurance',
'name': 'Unum Group',
'type': 'Company'}],
'attack_vector': 'Exploitation of Vulnerability',
'data_breach': {'personally_identifiable_information': True,
'sensitivity_of_data': 'High',
'type_of_data_compromised': ['names',
'Social Security numbers',
'other sensitive data']},
'date_detected': '2023-09-19',
'date_publicly_disclosed': '2023-09-19',
'description': 'A data breach involving Unum Group occurred due to a security '
'vulnerability in the MOVEit Transfer application, potentially '
'compromising personal information including names, Social '
'Security numbers, and other sensitive data.',
'impact': {'data_compromised': ['names',
'Social Security numbers',
'other sensitive data']},
'references': [{'date_accessed': '2023-09-19',
'source': 'California Office of the Attorney General'}],
'title': 'Unum Group Data Breach',
'type': 'Data Breach',
'vulnerability_exploited': 'MOVEit Transfer application vulnerability'}