Avention
| Primary URL | Location | Industry | www[.]avention[.]com |
Country
United States of America
|
Technology
|
|---|
Profile
Avention, also known as OneSource, is a United States-based organization whose specific core products, services, and market scope are not detailed in the available information. The company's operational identity is primarily defined by a significant security incident documented in 2016. On March 31, 2016, Avention experienced two separate but related security breaches that exclusively compromised employee data. The first incident involved the compromise of login credentials to a human resources vendor's system, leading to the theft of I-9 forms containing sensitive personal information including names, addresses, Social Security numbers, and government identification details. In a second, parallel incident, an employee fell victim to a phishing attack, resulting in the exposure of W-2 statements with comparable personal and financial information. Both breaches were discovered only after affected employees reported issues with fraudulent tax filings, indicating a delay in detection.
The company's response to these incidents is a notable aspect of its documented history. Upon discovery, Avention initiated an internal investigation and engaged an external cybersecurity firm to assess the breaches. The organization notified relevant law enforcement authorities and proactively alerted all affected current and former employees whose data had been compromised. As a remedial measure, Avention offered credit monitoring services to impacted individuals to mitigate potential harm from the identity theft. The breaches were confirmed to involve solely employee information, with no indication that customer data or commercial service platforms were affected. This event represents a key, verifiable moment in the organization's recent operational timeline, highlighting its encounter with a dual-vector data security failure targeting internal personnel records. The available record does not specify the company's size, industry sector, ownership structure, or any other distinguishing competencies beyond this incident and its aftermath.