Comcast Cable Communications and Truist Financial institution have revealed that they have been affected by a knowledge breach at FBCS and are actually informing their respective clients that their knowledge has been compromised.
The case issues a knowledge breach at Monetary Enterprise and Client Options (FBCS), a debt assortment company within the US that companions with numerous firms to gather unpaid money owed on their behalf.
Final April of this yr, FBCS reported a knowledge breach decided to have occurred between February 14 and February 26, 2024, when risk actors breached its community and stole the next particulars from its digital data:
- full identify
- Social Safety Quantity (SSN)
- Birthdate
- Account info
- Driver’s license or ID quantity
It was initially believed that the info breach had affected 1.9 million folkshowever later findings elevated the determine to three.2 million in June and at last 4.2 million folks in July.
The interior investigation into the incident seems to be ongoing, as FBCS not too long ago knowledgeable further entities that had been affected, together with Comcast and Truist.
Moreover, it’s now recognized that because of the worsening monetary state of affairs of FBCS, presumably as a direct results of the breach, entities not directly affected by the incident should perform the notification and remediation processes themselves.
Comcast knowledge uncovered
Comcast says FBCS assured them in March that the safety incident didn’t have an effect on buyer knowledge. Nonetheless, on July 17, FBCS notified Comcast that its clients’ knowledge was additionally affected.
In line with a discover submitted to the maine authorities273,703 Comcast clients have been affected by the breach.
“FBCS’ investigation found that the information downloaded by an unauthorized celebration included his identify, deal with, Social Safety quantity, date of beginning, and his Comcast account quantity and identification numbers used internally at FBCS,” the report reads. doc. notification despatched to affected clients.
“FBCS states that it has no indication that the non-public info compromised throughout this incident was misused.”
Affected people acquired 12 months of free identification theft safety providers, with activation directions connected.
Truist Financial institution additionally impacted
In associated information, Truist Financial institution, one of many largest banks in america, additionally despatched notices of a knowledge breach to its clients associated to the FBCS incident.
The letters have been despatched in mid-September, however a pattern was despatched extra not too long ago to the Californian authorities.
“FBCS has indicated that the kind of info that will have been affected varies by particular person and should embody the buyer’s identify, deal with, account quantity, date of beginning and Social Safety quantity,” Truist Financial institution revealed.
Truist operates greater than 2,700 branches in 15 states and employs 40,000 folks. Due to this fact, the variety of folks affected could possibly be vital, though it has not been specified.
BleepingComputer emailed Truist to learn how a lot of its clients have been affected by this incident, however no remark was instantly accessible.
In the meantime, final June, Truist Financial institution confirmed a separate violation This allegedly occurred in October 2023 after a risk actor leaked stolen knowledge on a hacking discussion board.