National accounts receivable management company and debt buyer NCB Management Services has started informing roughly 500,000 individuals that their personal information was compromised in a data breach.
An unauthorized party compromised some of NCB’s systems on February 1 and gained access to Bank of America credit card accounts information, NCB says. The incident was discovered on February 4, and the data theft was confirmed on March 8.
Exposed personal information, the company says, includes names, addresses, phone numbers, email addresses, birth dates, driver’s license numbers, Social Security numbers, and employment positions.
Financial information such as pay amounts, credit card numbers, routing numbers, account numbers and balance, and/or account statuses was also stolen.
According to NCB, the impacted credit card accounts had already been closed when the cyberattack occurred. The incident did not involve the compromise of Bank of America systems, NCB underlines.
The company also says that it is not aware of the potentially accessed information being distributed or used maliciously.
“The unauthorized activity on NCB’s systems has been stopped, and NCB has obtained assurances that the third party no longer has any of the information on its systems,” the company says.
NCB did not share information on the type of cyberattack it suffered, but its description of the incident suggests that it engaged in communication with the attackers, which implies that a ransom demand might have been made.
NCB informed the Maine Attorney General’s Office that it was sending notification letters to nearly 500,000 individuals affected by the incident.
Earlier this week, national consumer rights law firm Wolf Haldenstein Adler Freeman & Herz LLP announced that it was investigating the incident on behalf of impacted individuals.
Related: ChatGPT Data Breach Confirmed as Security Firm Warns of Vulnerable Component Exploitation
Related: 14 Million Records Stolen in Data Breach at Latitude Financial Services
Related: NBA Notifying Individuals of Data Breach at Mailing Services Provider
More from Ionut Arghire
- Enzo Biochem Ransomware Attack Exposes Information of 2.5M Individuals
- Google Temporarily Offering $180,000 for Full Chain Chrome Exploit
- Toyota Discloses New Data Breach Involving Vehicle, Customer Information
- Adobe Inviting Researchers to Private Bug Bounty Program
- Critical Vulnerabilities Found in Faronics Education Software
- Chrome 114 Released With 18 Security Fixes
- Spyware Found in Google Play Apps With Over 420 Million Downloads
- Millions of WordPress Sites Patched Against Critical Jetpack Vulnerability
Latest News
- Enzo Biochem Ransomware Attack Exposes Information of 2.5M Individuals
- Apple Denies Helping US Government Hack Russian iPhones
- Zero-Day in MOVEit File Transfer Software Exploited to Steal Data From Organizations
- Google Temporarily Offering $180,000 for Full Chain Chrome Exploit
- Russia Blames US Intelligence for iOS Zero-Click Attacks
- Toyota Discloses New Data Breach Involving Vehicle, Customer Information
- Cisco Acquiring Armorblox for Predictive and Generative AI Technology
- Moxa Patches MXsecurity Vulnerabilities That Could Be Exploited in OT Attacks
