The Dallas suburb noted in an online notice that the incident resulted in the compromise of names, addresses, Social Security numbers, credit card details, driver's license numbers, medical insurance data, and financial account details.
Information exposed by the incident included names, birthdates, email addresses, and employment history, said ICAO in an updated statement that emphasized the delivery of breach notices to impacted individuals.
Included in the records purportedly exfiltrated from Trump Hotel's guest reservation reminder/verification service were individuals' names, email addresses, communication dates, and other sampling details collected between January 2018 and January 2025.
Such a third-party breach not only led to the exposure of individuals' names, phone numbers, and email addresses, but also the exfiltration of some customers' partial credit card details and legacy systems' hashed credentials, said Grubhub in a statement.
Leading the additional protections is the default deactivation of public access to new clusters, which would only be accessible within users' Virtual Private Clouds.
Investigation into the incident completed in October revealed that only "limited" personal information had been compromised from affected individuals, who were informed and given complimentary identity protection services in December.
AEA confirmed being subjected to a cybersecurity incident that resulted in the exposure of information from 193,306 patients more than a month after the DragonForce ransomware operation took responsibility for the intrusion against the eye care provider, which was purported to lead to the theft of hundreds of gigabytes of data.
