The accountancy company Bansley and Kiener LLP located in Chicago, IL has reported that it experienced a ransomware attack in December 2020 that permitted the encryption of certain files inside its network. The attack merely brought about brief interruption, and all encrypted systems can be recovered using backup copies and immediately go back to usual operations.
The attack took place on December 10, 2020, and the succeeding investigation into the occurrence didn’t get any proof of data theft and affirmed that the attack was completely secured. Nonetheless, Bansley and Kiener stated in a December 3, 2021 breach notification letter that the organization discovered on May 24, 2021 that the hackers had exfiltrated certain files from its systems, which included sensitive client data.
A third-party cybersecurity agency was hired to help with the following investigation. Though it can’t be confirmed the specified types of details that were viewed and exfiltrated, on August 24, 2021, the investigation established that the hackers likely acquired the names and Social Security numbers of a number of persons.
Bansley and Kiener mentioned the attack prompted an evaluation of its security steps and subsequently the company toughened its security to stop more data breaches. The employees get continuous training on cybersecurity guidelines. Notification letters have already been mailed to affected people with advice on protecting their personal data, which include using the free credit and identity theft monitoring services that were provided.
The total number of persons that had their names and Social Security numbers compromised is still unknown, however, 4 different breach reports were submitted to the HHS’ Office for Civil Rights stating that a total of 70,941 persons were impacted.