Fedcap Rehabilitation security breach impacted 2158 clients
Fedcap Rehabilitation, the New York-based provider of employment resources and vocational training, is alerting 2,158 former and current clients about the recent security breach.
An investigation was launched by the Fedcap officials, with assistance of one topmost cybersecurity firm, after a fraudulent wire transfer was discovered. On May 28 of current year (i.e. 2019), Fedcap has finished their investigation and the officials of Fedcap have confirmed that unauthorized party has gained access to seven employee email accounts of Fedcap.
The breach investigation has determined that those seven employee email accounts have been compromised in between Sep. 20, 2018, and Jan. 27, 2019. Even though the aim of this attack was stealing money from the Fedcap, it is still possible that this attacker has possibly accessed/stolen sensitive client information from emails in those compromised email accounts.
As part of their investigation, Fedcap has undertaken a complete and detailed review of emails as well as attachments in those compromised employees' email accounts. It was then determined that following kinds of information were possibly accessed/stolen pertaining to some of their former and current clients: client names, Social security numbers, dates of birth, driver's license numbers, bank account numbers and routing numbers, passport numbers, medical history, medical treatment information, payment card information, medical treatment dates, diagnoses, medication, healthcare provider names, as well as health insurance member numbers and group numbers.
Till now, Fedcap hasn't received any evidence that will suggest any type of client information was misused. Fedcap is offering those individuals whose driver's license or Social Security numbers were possibly involved complimentary identity theft protection and credit monitoring services through Experian®.
The breach has prompted Fedcap to take steps that will help in preventing similar kinds of incident from happening in the future. For instance, Fedcap has implemented multi-factor authentication on all the email accounts as well as additional procedures was implemented to further strengthen the security processes.
"Fedcap regrets any inconvenience or concern this may cause. Fedcap began notifying the potentially affected individuals on August 29, 2019", said Fedcap in their notice.
The affected clients were advised to monitor and review their insurance statements, financial accounts statements, as well as explanation of benefits statements for any type of fraudulent activity.
» SPAMfighter News - 9/27/2019
We are happy to see you are reading our IT Security News.
We do believe, that the foundation for a good work environment starts with fast, secure and high performing computers. If you agree, then you should take a look at our Business Solutions to Spam Filter & Antivirus for even the latest version of Exchange Servers - your colleagues will appreciate it!