The SANS Institute suffered a data breach, 28,000 user records containing personally identifiable information (PII) were exposed. The organization quickly disabled the forwarding rule on one email account, which was set to forward emails to an unknown external address. Most of the emails were harmless, but some of these emails contained files with PII. The company has identified a phishing email as the initial attack vector, no other email accounts were affected. Financial information either passwords were not impacted in the incident.”]
Source: https://securityaffairs.co/wordpress/107071/data-breach/sans-institute-data-breach.html