Posted On August 22, 2022 Consumer Privacy & Data Breaches
August 22, 2022 – Service by Medallion, Inc. (“SBM”) reported a data breach after the company was targeted in a recent cybersecurity attack. As a result of the breach, the name and social security number of certain individuals was compromised. On August 16, 2022, SBM sent out data breach letters to those individuals whose information was affected by the breach.
The data breach lawyers at Console & Associates, P.C. are going to begin interviewing victims of the breach to determine what damages they sustained and what legal claims may be available to them. If you recently received a NOTICE OF DATA BREACH from Service by Medallion, Inc., contact us at (866) 778-5500 to discuss your legal options, or submit a confidential contact form for a free case evaluation.
Below is a portion of the letter that SBM sent to individuals affected by the data breach:
Dear [Redacted],
Service by Medallion, Inc. (“SBM”) is writing to inform you of a recent data security event that may impact the privacy of some of your personal information. While we are unaware of any attempted or actual misuse of your information, we are providing you with information about the event, our response, and steps you may take to protect against any misuse of your information, should you feel it necessary to do so.
What Happened? On January 5, 2022, SBM became aware of suspicious activity relating to an employee’s email account. SBM immediately launched an investigation to determine the nature and scope of the activity. The investigation determined that an unauthorized actor gained access to certain employee email accounts between August 21, 2021, and January 16, 2022. Although there is no indication that your information has been misused in relation to this event, in an abundance of caution, we undertook a comprehensive review of the contents of the impacted email accounts to determine what sensitive information was accessible to the unauthorized actor. We recently completed this review and determined that some of your personal information was present in potentially impacted files.
What Information Was Involved? Our investigation determined that the following types of your information were present in the email accounts: your name and social security number.
What We Are Doing. We have strict security measures in place to protect information in our care. Upon learning of this event, we quickly took steps to confirm the security of our systems and investigate the event. We worked quickly to secure our systems and implement additional security tools. We are also notifying regulators, as necessary.
Although we are unaware of any misuse of your information as a result of this event, as an additional precaution, SBM is offering you access to twelve (12) months of complimentary credit monitoring services through Cyberscout, a TransUnion company. Details of this offer and instructions on how to activate these services are enclosed with this letter.
What You Can Do. Please review the enclosed “Steps You Can Take to Help Protect Your Information,” which contains information on what you can do to better safeguard against possible misuse of your information.
For More Information. If you have additional questions or concerns, please call our toll-free dedicated assistance line at 1-800-405-6108. This toll-free line is available Monday through Friday (excluding U.S. holidays) between 8:00 am and 8:00 pm Eastern time.
