Posted On August 2, 2022 Consumer Privacy & Data Breaches
On July 29, 2022, Community Surgical Supply Inc. (“CSS”) reported a data breach stemming from what appears to be a ransomware attack resulting in an unauthorized party gaining access to sensitive consumer information in the possession of CSS. Based on an official filing from the company, the incident resulted in the following data types being compromised: full names, addresses, driver’s license numbers, government identification numbers, passport numbers, Social Security numbers, and dates of birth. Also on July 29, 2022, CSS began sending out data breach notification letters to all individuals who were impacted by the recent data security incident. The company believes 66,115 individuals were affected by the recent breach.
If you received a data breach notification, it is essential you understand what is at risk. The data breach lawyers at Console & Associates, P.C. are actively investigating the CSS data breach on behalf of people whose information was exposed. As a part of this investigation, we are providing free consultations to anyone affected by the breach who is interested in learning more about the risks of identity theft, what they can do to protect themselves, and what their legal options may be to obtain compensation from Community Surgical Supply Inc.
Based on the most recently available information about the CSS data breach, on October 5, 2021, Community Surgical Supply first learned of the incident when employees noticed that certain files on the company’s network had been encrypted. In response, CSS took the necessary steps to secure its network and then worked with cybersecurity professionals to investigate the incident. On July 1, 2022, the company’s investigation confirmed that an unauthorized party was able to access portions of the Community Surgical Supply network and that the compromised files contained sensitive consumer information.
Upon discovering that sensitive consumer data was accessible to an unauthorized party, Community Surgical Supply began the process of reviewing all affected files to determine what information was compromised and which consumers were impacted by the incident. While the breached information varies depending on the individual, it may include your first and last name, address, driver’s license number, government identification number, passport number, Social Security number, and date of birth.
On July 29, 2022, Community Surgical Supply sent out data breach letters to all individuals whose information was compromised as a result of the recent data security incident. Based on the most recent estimates, the CSS data breach affected 66,155 individuals.
Founded in 1962, Community Surgical Supply Inc. is a medical supply manufacturing company and retailer based in Toms River, New Jersey. The company supplies specialized healthcare products to patients, nurses, dieticians and respiratory therapists, including respiratory, enteral nutrition, sleep and infusion therapy products and services. Community Surgical Supply employs more than 775 people and generates approximately $226 million in annual revenue.
At Console & Associates, P.C., our consumer privacy lawyers monitor all security and data breaches to help affected consumers pursue their legal remedies. We offer free consultations to victims of data breaches and can explain your rights in clear, understandable terms so you can make an informed decision about how to proceed with your case. If you’ve been affected by the CSS data breach or any other data security incident, Console & Associates, P.C., will investigate your case at no charge and offer you thorough advice about how to most effectively proceed with your case. If you decide to bring a case, we only get paid if you do. If your claim is successful, any legal fees are either paid by the defendant or come out of the funds recovered from the defendant. If your claim doesn’t result in a recovery, you will pay nothing.
Below is a copy of the initial data breach letter issued by Community Surgical Supply Inc.:
We are writing to inform you of a recent data security incident we experienced that may have involved some of your information. This letter notifies you of the incident and informs you about steps you can take to help protect your personal information.
What Happened: On October 15, 2021, Community Surgical Supply Inc. experienced a data security incident that encrypted portions of our network. We immediately secured our digital environment and engaged a leading computer forensic firm and cybersecurity experts to investigate to determine what happened. The investigation revealed that an unauthorized party gained access to portions of our digital environment and accessed certain files and data stored in Community Surgical’s digital environment.
What Information Was Involved: Community Surgical completed a comprehensive review of the data that could have potentially been accessed by the unauthorized party and, on July 1, 2022, determined that information included your: first and last name, address, Driver’s license or other government identification number, passport number, Social Security number, or date of birth. We have no indication that your information has been misused.
What We Are Doing: We are implementing additional technical security measures. And we are providing you with information about steps that you can take to help protect your personal information, including offering you complimentary identity protection services through Equifax that includes 12 months of credit monitoring.
What We Are Doing: We are implementing additional technical security measures. And we are providing you with information about steps that you can take to help protect your personal information, including offering you complimentary identity protection services through Equifax that includes 24 months of credit monitoring.
What You Can Do: While we do not have any indication that you information has been misused, we advise you to remain vigilant for signs of unauthorized activity by reviewing your financial statements. For more information on how you can protect your personal information, please review the resources provided on the following pages.
For More Information: If you have any questions regarding the incident or would like assistance with enrolling in the services offered, please call 877-607-3756 Monday through Friday between 9 a.m. to 9 p.m. Eastern Time.
The security of your information is a top priority for Community Surgical. We take your trust in us and this matter very seriously and we deeply regret any worry or inconvenience that this may cause you.