Main Site HUB Security Scorecard API 3.2 Track Breach Events a Company

HUB

3.2 Track Breach Events a Company

Track Breach Events a Company

SecurityScorecard allows you to track breach events on a companies scorecard via our API's. This API endpoint allows you to get to information on breaches that have occured in the past for a company. You can check out the full specification for this endpoint here

Resource URI

/companies/{domain}/history/events/breaches?date_from={from}&date_to={to}

Parameters:

Name Required Description
Domain Y The primary domain identifying a company in SecurityScorecard.
Date From Y The historical start date (2019-08-01T00:00:00.00Z)
Date To Y The historical end date (2019-08-05T00:00:00.00Z)

Sample Code:


            curl -X GET \
                https://api.securityscorecard.io/companies/equifax.com/history/events/breaches?date_from=2017-01-01T00:00:00.00Z&date_to=2019-08-05T00:00:00.00Z \
                -H 'Accept: application/json' \
                -H 'Authorization: Token <Your API Key>' \
                -H 'Content-Type: application/json' \
                -H 'cache-control: no-cache'
        

Sample Response:


{
    "entries": [
        {
            "breach_data": {
                "description": "Equifax Inc. learned about a major breach of its computer systems in March -- almost five months before the date it has publicly disclosed, according to three people familiar with the situation.\r\n\r\nIn a statement, the company said the March breach was not related to the hack that exposed the personal and financial data on 143 million U.S. consumers, but one of the people said the breaches involve the same intruders. Either way, the revelation that the 118-year-old credit-reporting agency suffered two major incidents in the span of a few months adds to a mounting crisis at the company, which is the subject of multiple investigations and announced the retirement of two of its top security executives on Friday.\r\n\r\nEquifax hired the security firm Mandiant on both occasions and may have believed it had the initial breach under control, only to have to bring the investigators back when it detected suspicious activity again on July 29, two of the people said.\r\n\r\nEquifax\u2019s hiring of Mandiant the first time was unrelated to the July 29 incident, the company spokesperson said. Vitor De Souza, senior vice president for global marketing at FireEye Inc., Mandiant\u2019s parent company, declined to comment.",
                "link": "http://www.newsmax.com/Newsfront/Equifax-hack-earlier/2017/09/18/id/814313/",
                "method": "Hacked"
            },
            "date": "2017-03-01T00:00:00.000Z",
            "event_type": "breach"
        },
        {
            "breach_data": {
                "description": "On September 7, 2017, Equifax Inc. announced a cybersecurity incident potentially impacting approximately 143 million U.S. consumers. Criminals exploited a U.S. website application vulnerability to gain access to certain files. Based on the company\u2019s investigation, the unauthorized access occurred from mid-May through July 2017. The company has found no evidence of unauthorized activity on Equifax\u2019s core consumer or commercial credit reporting databases.\r\n\r\nThe information accessed primarily includes names, Social Security numbers, birth dates, addresses and, in some instances, driver\u2019s license numbers. In addition, credit card numbers for approximately 209,000 U.S. consumers, and certain dispute documents with personal identifying information for approximately 182,000 U.S. consumers, were accessed. As part of its investigation of this application vulnerability, Equifax also identified unauthorized access to limited personal information for certain UK and Canadian residents. Equifax will work with UK and Canadian regulators to determine appropriate next steps. The company has found no evidence that personal information of consumers in any other country has been impacted.",
                "link": "http://www.slate.com/blogs/the_slatest/2017/09/07/equifax_hack_exposes_personal_data_of_143_million_americans.html",
                "method": "Hacked"
            },
            "date": "2017-09-07T00:00:00.000Z",
            "event_type": "breach"
        }
    ],
    "page": 0,
    "size": 2
}