The California Office of the Attorney General reported a data breach involving W.W. Grainger, Inc. on November 18, 2015. A coding error in the Grainger.com mobile apps led to the potentially unauthorized storage of unsecured usernames and passwords. The breach was identified on October 27, 2015, and no payment card information or other personal information was affected.
Source: https://oag.ca.gov/ecrime/databreach/reports/sb24-58923
TPRM report: https://www.rankiteo.com/company/w.w.-grainger
"id": "w.w733072525",
"linkid": "w.w.-grainger",
"type": "Breach",
"date": "10/2015",
"severity": "25",
"impact": "1",
"explanation": "Attack without any consequences"{'affected_entities': [{'industry': 'Industrial Supplies',
'location': 'Illinois, USA',
'name': 'W.W. Grainger, Inc.',
'type': 'Company'}],
'attack_vector': 'Coding Error',
'data_breach': {'type_of_data_compromised': ['Usernames', 'Passwords']},
'date_detected': '2015-10-27',
'date_publicly_disclosed': '2015-11-18',
'description': 'A coding error in the Grainger.com mobile apps led to the '
'potentially unauthorized storage of unsecured usernames and '
'passwords.',
'impact': {'data_compromised': ['Usernames', 'Passwords'],
'systems_affected': ['Grainger.com Mobile Apps']},
'references': [{'date_accessed': '2015-11-18',
'source': 'California Office of the Attorney General'}],
'title': 'Data Breach at W.W. Grainger, Inc.',
'type': 'Data Breach',
'vulnerability_exploited': 'Unsecured Storage of Usernames and Passwords'}