Breach cyber

Volunteers of America Southwest

Nov 16, 2021 1 min read
Volunteers of America Southwest

The California Office of the Attorney General reported a data breach involving Volunteers of America Southwest on January 14, 2022. The breach occurred on November 16, 2021, when an employee fell victim to a phishing email that allowed unauthorized access to limited client information, including first names, last names, and some COVID vaccination statuses. Approximately UNKN individuals were affected.

Source: https://oag.ca.gov/ecrime/databreach/reports/sb24-550020

TPRM report: https://www.rankiteo.com/company/volunteers-of-america-southwest

"id": "vol958072525",
"linkid": "volunteers-of-america-southwest",
"type": "Breach",
"date": "11/2021",
"severity": "60",
"impact": "3",
"explanation": "Attack with significant impact with internal employee data leaks"
{'affected_entities': [{'customers_affected': 'UNKN',
                        'industry': 'Health and Human Services',
                        'location': 'California',
                        'name': 'Volunteers of America Southwest',
                        'type': 'Non-profit Organization'}],
 'attack_vector': 'Phishing',
 'data_breach': {'number_of_records_exposed': 'UNKN',
                 'personally_identifiable_information': ['First Names',
                                                         'Last Names'],
                 'type_of_data_compromised': ['First Names',
                                              'Last Names',
                                              'COVID Vaccination Statuses']},
 'date_detected': '2021-11-16',
 'date_publicly_disclosed': '2022-01-14',
 'description': 'The California Office of the Attorney General reported a data '
                'breach involving Volunteers of America Southwest on January '
                '14, 2022. The breach occurred on November 16, 2021, when an '
                'employee fell victim to a phishing email that allowed '
                'unauthorized access to limited client information, including '
                'first names, last names, and some COVID vaccination statuses. '
                'Approximately UNKN individuals were affected.',
 'impact': {'data_compromised': ['First Names',
                                 'Last Names',
                                 'COVID Vaccination Statuses']},
 'initial_access_broker': {'entry_point': 'Phishing Email'},
 'post_incident_analysis': {'root_causes': 'Human Error'},
 'references': [{'date_accessed': '2022-01-14',
                 'source': 'California Office of the Attorney General'}],
 'title': 'Data Breach at Volunteers of America Southwest',
 'type': 'Data Breach',
 'vulnerability_exploited': 'Human Error'}
Published by
Jeremy C
Jeremy C
You might also like
Great! Next, complete checkout for full access to Rankiteo Blog.
Welcome back! You've successfully signed in.
You've successfully subscribed to Rankiteo Blog.
Success! Your account is fully activated, you now have access to all content.
Success! Your billing info has been updated.
Your billing was not updated.