Supply chain [SC] Supply Chain

General Electric Third-Party Breach (March 2020)

2020-03-01 [vendor] Canon Business Services
Primary Source ↗

Incident Details

Third-party data breach exposes GE employees’ personal information. Past and present employees of GE are learning that their sensitive information has been exposed by a data breach at a third-party service provider. Third-party company: Canon Business Services.

Technical Details

Initial Attack Vector
Compromise of third-party service provider / vendor relationship
Vendor / Product
Canon Business Services
Supply Chain Attack
✅ Confirmed third-party / vendor compromise

Timeline

  1. 2020-03-01 Breach occurred
  2. 2020-03-26 Publicly disclosed