The type of data compromised in last year’s cyberattack was detailed by Infosys.

Facebook
X
LinkedIn
Pinterest
Threads
Email

More details about the type of data compromised in last year’s cyberattack have been provided by Infosys McCamish Systems (IMS), a US subsidiary of India’s IT service provider Infosys

As per a breach notice letter submitted to the Maine Attorney General, the cybersecurity incident in late 2023 influenced in excess of 6 million individuals.

Back in November, IMS didn’t give many insights concerning the disturbance and just said that the breach came about in the “non-accessibility” of certain applications and systems.

A couple of months after the fact, the Bank of America uncovered that the cyberattack influenced 57,000 of its clients. This, obviously, featured the interconnected risks inside the financial services landscape.

Presently, IMS says it started giving written notice of the compromise to every influenced individual and that the organization had conducted a survey of the incident and confirmed that some private data was breached.

 IMS said, “The information impacted varies by individual but includes some or all of the following: Social Security Number, date of birth, medical treatment/record information, biometric data, email address and password, username and password, Driver’s License number or state ID number, payment card information, financial account information ,tribal ID number, passport number and US military ID number.”

 The company said it knew nothing about any instances in which individual data had been fraudulently utilized, yet it actually offered affected people complimentary credit monitoring for 24 months.

IMS is a completely possessed subsidiary of Infosys in the US. Infosys is perhaps of India’s biggest organization, with a huge worldwide presence and over 300,000 workers around the world.

The organization has been as of now hit by two class action complaints  over last year’s cyberattack. In spring and in May, they were both filed in the US Area Court for the Northern Region of Georgia.

 Infosys said in a public divulgence in May, “On May 15, 2024, another class action complaint emerging out of a similar incident was filed in a similar court against IMS. The grievance was purportedly  filed on behalf of some or all people whose personally recognizable data was compromised in the incident.”

The LockBit ransomware group claimed responsibility regarding the IMS hack. Having gotten millions in Bitcoin ransom payouts from its casualties, LockBit makes it clear that things are not slowing down, even in the wake of having its infrastructure raided by US and and International law enforcement this February.

Never Miss An Update
Never miss any important news. Subscribe to our newsletter.
Latest News

Subscribe to our newsletter

Sign up for newsletter and receive exclusive cyber news regularly