WEI Mortgage LLC suffered a data breach resulting from a phishing attack that granted unauthorized access to employee email accounts between September 13 and September 28, 2017. The incident exposed sensitive personal information of affected individuals, including Social Security numbers, addresses, and names. The breach was disclosed to the California Office of the Attorney General on December 8, 2017. The attack exploited human vulnerability through deceptive emails, leading to credential compromise and subsequent unauthorized access to internal systems. While the exact number of impacted individuals was not specified, the exposure of Social Security numbers a high-value target for identity theft elevates the breach’s severity. The delay in detection (over two weeks) further increased the risk of misuse of the stolen data. The company’s response included reporting the incident to regulatory authorities, though details on mitigation measures (e.g., credit monitoring for victims) were not provided in the report. This incident underscores the persistent threat of phishing-based breaches targeting employee credentials, particularly in sectors handling financial and personal data, such as mortgage services.
Source: https://oag.ca.gov/ecrime/databreach/reports/sb24-130881
TPRM report: https://www.rankiteo.com/company/wedirectlendinginc
"id": "wed130082125",
"linkid": "wedirectlendinginc",
"type": "Breach",
"date": "9/2017",
"severity": "60",
"impact": "3",
"explanation": "Attack with significant impact with internal employee data leaks"{'affected_entities': [{'industry': 'Financial Services (Mortgage Lending)',
'location': 'California, USA',
'name': 'WEI Mortgage LLC',
'type': 'Private Company'}],
'attack_vector': 'Phishing',
'data_breach': {'data_exfiltration': 'Likely (unauthorized access to emails)',
'file_types_exposed': ['Emails', 'Attachments (potential)'],
'personally_identifiable_information': ['Social Security '
'numbers',
'Addresses',
'Names'],
'sensitivity_of_data': 'High',
'type_of_data_compromised': ['Personally Identifiable '
'Information (PII)']},
'date_publicly_disclosed': '2017-12-08',
'description': 'The California Office of the Attorney General reported that '
'WEI Mortgage LLC experienced a data breach involving '
'unauthorized access to employee email accounts due to a '
'phishing attack, which occurred from September 13 to '
'September 28, 2017. The breach potentially compromised the '
'personal information of affected individuals, including their '
'Social Security number, address, and name.',
'impact': {'data_compromised': ['Social Security numbers',
'Addresses',
'Names'],
'identity_theft_risk': 'High (PII exposed)',
'systems_affected': ['Employee Email Accounts']},
'initial_access_broker': {'entry_point': 'Phishing Email',
'high_value_targets': ['Employee Email Accounts']},
'investigation_status': 'Reported; details limited',
'post_incident_analysis': {'root_causes': ['Successful phishing attack '
'leading to email account '
'compromise']},
'references': [{'source': 'California Office of the Attorney General'}],
'regulatory_compliance': {'regulations_violated': ['Potential violation of '
'California data breach '
'notification laws (e.g., '
'CCPA precursor)'],
'regulatory_notifications': ['California Office of '
'the Attorney '
'General']},
'response': {'communication_strategy': 'Public Disclosure (Reported to '
'California AG)'},
'title': 'WEI Mortgage LLC Data Breach via Phishing Attack (2017)',
'type': 'Data Breach',
'vulnerability_exploited': 'Human (Employee Email Compromise)'}