Cyber Incident Victim: East West Bank
Date:
Nov 2021
Location:
United States of America
Summary
East West Family of Companies experienced a data breach in which an unauthorized party accessed sensitive information stored on its network, compromising names and Social Security numbers of current and former employees as well as employee dependents. The company detected the intrusion, secured its systems, and initiated an investigation with third-party cybersecurity experts, later confirming that unauthorized access occurred over a multi-day period. Following a review of affected files, the organization notified impacted individuals of the incident, which involved personal data potentially exposed to misuse. The Denver-based construction and real estate firm did not disclose the specific method of unauthorized access but confirmed restoration of its operations post-breach.
| CIA Posture | Motives | Tactics, Techniques & Procedures |
|---|---|---|
| Available to members | 1 motive | 1 technique |
| Threat Actors | Type | Location |
|---|---|---|
| 0 actors | Available to members | Available to members |
Description
On November 8, 2021, East West Family of Companies detected unauthorized access to portions of its computer systems, prompting immediate containment measures including system lockdowns and engagement of third-party cybersecurity experts. The forensic investigation established that the unauthorized actor accessed certain network files between November 5 and November 8, 2021, though company operations were restored shortly after detection. Analysis confirmed the compromised data pertained exclusively to current/former employees and their dependents, with no evidence of customer or client information exposure. East West completed its comprehensive file review on May 9, 2022, verifying that accessed records contained names and Social Security numbers. The Denver-based construction and real estate firm, comprising east west partners, east west hospitality, and Slifer Smith & Frampton Real Estate subsidiaries, notified affected individuals via mailed data breach letters on July 1, 2022.
The breach impacted an undisclosed number of individuals across the organization's 42+ employees and $26 million annual operations, though the company did not disclose total affected records or precise intrusion methods. Investigators confirmed threat actors exclusively targeted employee-related data repositories during the three-day access window, with no indication of broader network compromise beyond identified files. While East West secured systems and terminated unauthorized access upon detection, the five-month forensic review period delayed victim notifications until July 2022. The incident exposed highly sensitive personally identifiable information (PII) capable of facilitating identity theft, though no specific fraud incidents were directly attributed to the breach in available disclosures. Company statements emphasized restoration of operational integrity but did not disclose whether security upgrades were implemented post-incident.