The California Office of the Attorney General reported a data breach incident involving Yandy.com on September 8, 2014. The breach date spans multiple dates, including May 28, 2014, July 20, 2014, August 13, 2014, and August 18, 2014, and involved unauthorized access to customers' payment card data, potentially exposing names, addresses, credit card numbers, expiration dates, CVV numbers, and email addresses.
Source: https://oag.ca.gov/ecrime/databreach/reports/sb24-46527
TPRM report: https://www.rankiteo.com/company/yandy-com
"id": "yan323080425",
"linkid": "yandy-com",
"type": "Breach",
"date": "5/2014",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"{'affected_entities': [{'industry': 'Retail',
'name': 'Yandy.com',
'type': 'E-commerce'}],
'attack_vector': 'Unauthorized Access',
'data_breach': {'data_exfiltration': True,
'personally_identifiable_information': True,
'sensitivity_of_data': 'High',
'type_of_data_compromised': ['names',
'addresses',
'credit card numbers',
'expiration dates',
'CVV numbers',
'email addresses']},
'date_detected': '2014-09-08',
'date_publicly_disclosed': '2014-09-08',
'description': "Unauthorized access to customers' payment card data, "
'potentially exposing names, addresses, credit card numbers, '
'expiration dates, CVV numbers, and email addresses.',
'impact': {'data_compromised': ['names',
'addresses',
'credit card numbers',
'expiration dates',
'CVV numbers',
'email addresses'],
'payment_information_risk': True},
'references': [{'date_accessed': '2014-09-08',
'source': 'California Office of the Attorney General'}],
'title': 'Yandy.com Data Breach',
'type': 'Data Breach'}