The BlackSuit ransomware disclosed that they had stolen the information of Young Consulting customers last April. This revelation prompted the software provider to roll out data breach alerts to the affected individuals.
Young Consulting is an Atlanta-based software solutions provider specialising in the employer stop-loss industry. Its primary objective is to help insurance carriers, brokers, and third-party administrators manage, market, underwrite, and oversee stop-loss insurance policies.
However, the company started distributing alerts of a data breach to almost one million customers, including Blue Shield of California subscribers, whose data was stolen by the BlackSuit ransomware group earlier this month.
Reports stated that the unauthorised intrusion occurred on April 10, but the organisation only noticed it three days later when the threat actors activated the encryption of its systems. The subsequent investigation was then completed on June 28.
The following assessment of the attack confirmed that the compromised information included full names, Social Security numbers (SSNs), dates of birth, and insurance claim details. The company assured the recipients of the notification letters that they are eligible to enrol in a one-year complimentary credit monitoring service, which they can claim until the end of November 2024.
Young Consulting urges the recipients to employ the credit monitoring service.
Young Consulting stated that the potentially impacted individuals should take advantage of the credit monitoring service since the BlackSuit ransomware group has already exposed the stolen information on its extortion site.
The recipients of the warning should be on the lookout for unwanted communications, fraudulent activities, and phishing messages that ask for more information, as other threat actors could have already obtained the leaked data on the BlackSuit site.
On the other hand, BlackSuit claimed to have leaked far more than what Young Consulting disclosed in the notices. The group insisted that the exposed data includes business contracts, contacts, presentations, employee passports, contracts, contacts, family details, medical examinations, financial audits, reports, and payments.
Therefore, the affected people and the company’s security team should not take these threats lightly. The impact of this exposed database is massive, as various cybercriminal groups could already use the leaked data to execute various illegal campaigns that would affect both the company and its customers.