National Amusements, the corporation that owns CBS and Paramount, has started informing over 80,000 individuals that their personal information was compromised in a December 2022 data breach.
The incident was identified on December 15, 2022, the company says in a notification letter sent to the impacted individuals, a copy of which was submitted to the Maine Attorney General’s Office.
According to National Amusements, the attackers had access to its network between December 13 and December 15, 2022, and accessed or exfiltrated files containing personal information.
“We immediately took steps to secure our network and minimize any disruption to our operations. We launched an investigation into the nature and scope of the event with the assistance of industry-leading cybersecurity specialists,” the company says.
In August 2023, the investigation determined that personal information was compromised during the attack. Last week, National Amusements told the Maine AGO that just over 82,000 individuals were affected.
The impacted information, the company said, includes names and other personal identifiers, financial account numbers, and credit/debit card numbers “in combination with security code, access code, password or PIN for the account”.
National Amusements shared no further details on the type of cyberattack it suffered and did not specify whether the impacted individuals are employees or customers. Based on the type of compromised data, however, it appears that only employees were affected.
“While we have no indication of any identity theft or fraud occurring as a result of this event, we are providing you with information about the event, our response, and additional measures you can take to help protect your information, should you feel it appropriate to do so,” the notification letter reads.
The impacted individuals have been offered complimentary credit monitoring services, including fraud consultation and identity theft restoration services, and are encouraged to remain vigilant about any suspicious activity on their accounts.
SecurityWeek has emailed National Amusements for additional information on the incident and will update this article as soon as a reply arrives.