The California Office of the Attorney General reported a data breach involving Wells Fargo Bank, N.A. on May 5, 2022. The breach occurred on December 31, 2021, when a Wells Fargo employee emailed an encrypted file containing personal information to their personal email address, affecting an unspecified number of individuals. Types of personal information impacted may include names, addresses, phone numbers, email addresses, dates of birth, and social security numbers.
Source: https://oag.ca.gov/ecrime/databreach/reports/sb24-553127
TPRM report: https://www.rankiteo.com/company/wellsfargo
"id": "wel539072925",
"linkid": "wellsfargo",
"type": "Breach",
"date": "12/2021",
"severity": "60",
"impact": "3",
"explanation": "Attack with significant impact with internal employee data leaks"{'affected_entities': [{'industry': 'Banking',
'location': 'California',
'name': 'Wells Fargo Bank, N.A.',
'type': 'Financial Institution'}],
'attack_vector': 'Email',
'data_breach': {'data_encryption': 'Yes',
'personally_identifiable_information': 'Yes',
'sensitivity_of_data': 'High',
'type_of_data_compromised': ['Names',
'Addresses',
'Phone Numbers',
'Email Addresses',
'Dates of Birth',
'Social Security Numbers']},
'date_detected': '2022-05-05',
'date_publicly_disclosed': '2022-05-05',
'description': 'An employee emailed an encrypted file containing personal '
'information to their personal email address.',
'impact': {'data_compromised': ['Names',
'Addresses',
'Phone Numbers',
'Email Addresses',
'Dates of Birth',
'Social Security Numbers']},
'post_incident_analysis': {'root_causes': 'Human Error'},
'references': [{'date_accessed': '2022-05-05',
'source': 'California Office of the Attorney General'}],
'threat_actor': 'Internal Employee',
'title': 'Wells Fargo Data Breach',
'type': 'Data Breach',
'vulnerability_exploited': 'Human Error'}