Posted On May 17, 2023 Consumer Privacy & Data Breaches
May 17 – R&B Corporation of Virginia, doing business as Credit Control Corporation (CCC), informed the Maine Attorney General of a data breach on May 15, 2023, after discovering that an unauthorized user had stolen data from the company’s server. According to the company’s official report, the event led to a third party acquiring access to the personal information of some of its consumers, including their names and Social Security numbers. After it was determined that consumer information had been compromised, CCC immediately started notifying those affected.
It is crucial that you know what is at stake if you get a data breach notice. Data breach lawyers at Console & Associates, P.C. are conducting an investigation into the CCC data breach on behalf of individuals whose personal information was compromised. We are offering free consultations to anyone impacted by the breach who is interested in learning more about the risks of identity theft, what they can do to protect themselves, and what legal options they may have in seeking compensation from Credit Control Corporation as part of this investigation.
Credit Control Corporation (also known as R&B Corporation of Virginia) is a company that specializes in debt collection. CCC offers its corporate clients overdue debt collections, budget plan management, third-party insurance follow-up, and cash acceleration solutions in order to help them in collecting outstanding amounts owed and boosting cash flow. Credit Control Corporation is a Newport News, Virginia-based company that employs in excess of 25 employees and has annual revenues of about $7 million.
CCC reported suspicious activities inside its network on March 7, 2023, as stated in a document filed with the office of the Attorney General of Maine. In response, CCC shut down the impacted systems and began coordinating with cybersecurity experts.
The cause of the suspicious behavior was traced back to illegal activity on March 14, 2023, according to CCC’s findings. Between March 2, 2023 and March 7, 2023, someone with illegal access to the company’s computer system copied a number of files containing sensitive consumer data.
Credit Control Corporation immediately started reviewing the affected files to identify what information was stolen and who was affected after the discovery that sensitive consumer data was made accessible to an unauthorized person. On May 3, 2023, CCC concluded its investigation looking through the stolen data. Your name and Social Security number can be among the compromised data; however, the specifics may vary by person.
Credit Control Corporation notified those whose personal information was exposed by letter on May 15, 2023.
The consumer privacy lawyers at Console & Associates, P.C. help customers affected by data and security breaches pursue legal solutions by offering free consultations. By explaining your rights in clear, concise terms, we help you make an informed decision about your next steps. If you are a victim of the Credit Control Corporation data breach, Console & Associates, P.C. will investigate at no charge to you and offer advice on how to proceed. If you decide to pursue a case, rest assured that we don’t get paid unless you do. If your claim is successful, legal fees are either paid out of the funds recovered or by the defendant. If your claim is not successful, you pay nothing.
Below is a portion of the letter sent to affected individuals:
R&B Corporation of Virginia d/b/a Credit Control Corporation (“CCC”) provides debt collection services to other entities. CCC is writing on behalf of entities including <> to inform you of a recent event at CCC. We are providing you with information about the event, our response, and steps you may take, should you feel it is appropriate to do so.
What Happened? On March 7, 2023, CCC became aware of unusual activity involving certain systems within our network. We promptly isolated the systems, and, with the assistance of third-party forensic specialists, commenced a comprehensive investigation into the nature and scope of the activity. On or about March 14, 2023, the investigation determined that certain files were copied from our network as part of a cyber incident that occurred between March 2, 2023, and March 7, 2023. We undertook a thorough review of the files in order to identify what specific information was present in the files and to whom it related. On May 4, 2023, we began notifying our business partners and worked with them to provide this notice.
What Information Was Involved? The following types of information associated with you may have been present in the involved files: [Redacted].
What We Are Doing. We take this event and the security of information in our care seriously. As part of our ongoing commitment to the security of information, we have a process in place to ensure regular and timely review and, where necessary, updating of our existing policies and procedures related to data protection and security. We have also implemented additional security measures as appropriate to further secure the information in our systems and we are increasing the frequency of our employee training on topics including the importance of safeguarding data. Upon learning of the unusual activity, we moved quickly to investigate and respond. The investigation included confirming the security of CCC’s network, reviewing the relevant files, notifying potentially affected business partners, and notifying federal law enforcement. We are also notifying individuals on behalf of our business partners and providing these individuals with an opportunity to activate complimentary identity monitoring services.
What You Can Do. We encourage you to remain vigilant against incidents of identity theft and fraud by reviewing your account statements and monitoring your free credit reports for suspicious activity. You may also review the information contained in the attached Steps You Can Take to Help Protect Personal Information section of this letter. Further, you may activate the complimentary identity monitoring services we are offering to you for 1 year through Kroll. Although we are making these services available to you, we are unable to activate for you directly. If you would like to activate these services for yourself, will need to follow the attached instructions.
For More Information. If you have additional questions, please contact our dedicated assistance line at (866) 347-3197, Monday through Friday from 9:00 a.m. to 6:30 p.m. EST (excluding major U.S. holidays). You may also write to Credit Control Corporation, attention: Privacy Dept., 11821 Rock Landing Drive, Newport News, VA 23606 or visit our website at [Redacted].