Washington's State Auditor office data breach incident compromised the personal information in 1.6 million employment claims.
The compromised information included the person’s name, social security number driver’s license or state identification number, bank details, and place of employment.
The breach incident took place after an unauthorized person was able to exploit a software vulnerability in its file transfer service provider.
TPRM report: https://scoringcyber.rankiteo.com/company/washington-state-auditor's-office
"id": "was81918422",
"linkid": "washington-state-auditor's-office",
"type": "Breach",
"date": "02/2021",
"severity": "90",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"
{'affected_entities': [{'customers_affected': 1600000,
'industry': 'Public Administration',
'location': 'Washington State',
'name': "Washington's State Auditor Office",
'type': 'Government'}],
'attack_vector': 'Software Vulnerability',
'data_breach': {'number_of_records_exposed': 1600000,
'personally_identifiable_information': True,
'sensitivity_of_data': 'High',
'type_of_data_compromised': ["Person's Name",
'Social Security Number',
"Driver's License or State "
'Identification Number',
'Bank Details',
'Place of Employment']},
'description': "Washington's State Auditor office data breach incident "
'compromised the personal information in 1.6 million '
'employment claims. The compromised information included the '
'person’s name, social security number, driver’s license or '
'state identification number, bank details, and place of '
'employment. The breach incident took place after an '
'unauthorized person was able to exploit a software '
'vulnerability in its file transfer service provider.',
'impact': {'data_compromised': ["Person's Name",
'Social Security Number',
"Driver's License or State Identification "
'Number',
'Bank Details',
'Place of Employment']},
'threat_actor': 'Unauthorized Person',
'title': "Washington's State Auditor Office Data Breach",
'type': 'Data Breach',
'vulnerability_exploited': 'File Transfer Service Provider'}