Posted On May 9, 2023 Consumer Privacy & Data Breaches
May 9 – After finding that sensitive information belonging to union members had been compromised in a data breach at NationsBenefits, a business used by the UAW to administer benefits to members, the UAW Retiree Medical Benefits Trust released a notice of data breach on its website on May 5, 2023. According to the company’s announcement, the breach exposed consumers’ full names, protected health information, and Social Security numbers to an unauthorized party. After discovering consumer information had been compromised, UAW Benefits Trust immediately started notifying those directly affected via letter.
Data breach lawyers at Console & Associates, P.C. are investigating the data breach involving the United Auto Workers and NationsBenefits. We are offering no-cost consultations to discuss your rights and choices about financial recompense from the corporation, as well as information on what you can do to protect yourself after receiving a breach notification.
The United Auto Workers is a labor organization with its headquarters in Detroit, Michigan, and its membership spread throughout the United States, Puerto Rico, and Canada: over 400,000 current workers and more than 580,000 retirees. The United Auto Workers (UAW) represents workers at approximately 1,050 companies throughout the United States and manages 600 local unions. UAW Benefits Trust began operations in 1935 and has since grown to employ over 469 people and earn close to $71 million annually.
We have limited information about the UAW Benefits Trust data breach at this point. What we do know about comes from a company post on its website and some other sources. NationsBenefits discovered that a data breach had occurred at one of its suppliers, Fortra, LLC, on February 7, 2023. A follow-up investigation revealed that certain NationsBenefits consumers were affected by the Fortra breach’s exposed data. NationsBenefits launched an investigation into the breach to determine what UAW information had been exposed.
After learning that private customer information had fallen into the wrong hands, NationsBenefits launched a thorough investigation of the compromised files to ascertain what data had been exposed and how many customers had been affected. Your full name, protected health information, and Social Security number might have been compromised, albeit the specifics vary by person. The UAW and the UAW Members Trust systems were not compromised, according to an analysis of all available data.
Data breach notices were sent out by UAW Benefits Trust to all affected people on May 5, 2023.
The information compromised in the UAW data breach might be used in a variety of malicious ways by hackers. They may commit a multitude of crimes, notably committing identity theft or selling the information to others on the dark web who wish to commit those crimes.
The security breach has exposed sensitive data that might be utilized in a wide variety of malicious ways. Accounts and credit cards might be fraudulently charged in the event of a data breach. Public profiles frequently include all the information needed to apply for new credit cards plus the information obtained in this cyberattack, including names and Social Security numbers.
Identity theft is not limited to monetary transactions, and hackers may exploit your data for other purposes as well. Identity theft in the medical field is possible as well. If they have access to all of your protected health information, they may use it to get medical treatment in your name and saddle you with the bill. Your medical records might be at risk if they include false information about your medical history or the drugs you use.
The consumer privacy lawyers at Console & Associates, P.C. help customers affected by data and security breaches pursue legal solutions by offering free consultations. By explaining your rights in clear, concise terms, we help you make an informed decision about your next steps. If you are a victim of the UAW Retiree Medical Benefits Trust data breach, Console & Associates, P.C. will investigate at no charge to you and offer advice on how to proceed. If you decide to pursue a case, rest assured that we don’t get paid unless you do. If your claim is successful, legal fees are either paid out of the funds recovered or by the defendant. If your claim is not successful, you pay nothing.
Below is a portion of the letter posted on their website:
The UAW Retiree Medical Benefits Trust (the “Trust”) is making potentially impacted members aware of an event experienced by our benefits administration provider, NationsBenefits Holdings, LLC (“NationsBenefits”).
On February 7, 2023, NationsBenefits learned that its vendor – Fortra, LLC (“Fortra”) – suffered a data security incident which resulted in access to or the acquisition of data belonging to NationsBenefits. NationsBenefits analyzed the impacted data and determined personal information belonging to some of the Trust members was impacted by this incident. NationsBenefits diligently worked with the Trust to identify up-to-date address information to notify impacted individuals. On April 13, 2023, NationsBenefits started providing notice of this incident to potentially impacted individuals. The notice includes information about the incident and about the steps that potentially impacted individuals can take to protect their information.
NationsBenefits is providing notice to impacted Trust members by mail and including an offer for free credit monitoring together with identity theft assistance and insurance. NationsBenefits is also notifying the U.S. Department of Health & Human Services’ Office for Civil Rights and relevant state authorities. If you have questions regarding this event, please call NationsBenefits’s dedicated assistance line at 1-866- 313-7993. For those that received a letter, please call the number provided in your letter. Additional information can also be found on NationsBenefits’s website: [Redacted].
The Trust encourages potentially impacted individuals to remain vigilant against incidents of identity theft and fraud, to review account statements, and to monitor their credit reports and explanation of benefits forms for suspicious activity. The letter NationsBenefits will send to impacted individuals also provides additional information on obtaining a free credit report annually from each of the three major credit reporting bureaus by visiting [Redacted], calling 877-322-8228, or contacting the three major credit bureaus directly at: Equifax, P.O. Box 105069, Atlanta, GA, 30348, 1-800-685-1111, [Redacted]; Experian, P.O. Box 2002, Allen, TX 75013, 800-916-8800, [Redacted]; TransUnion, P.O. Box 2000, Chester, PA 19016, 800-680-7289, [Redacted].
Potentially impacted individuals may also find information regarding identity theft, fraud alerts, security freezes and the steps they may take to protect their information by contacting the credit bureaus, the Federal Trade Commission or their state Attorney General. The Federal Trade Commission can be reached at: 600 Pennsylvania Avenue NW, Washington, DC 20580; [Redacted]; 1-877-ID-THEFT (1-877- 438-4338); and TTY: 1-866-653-4261.
Instances of known or suspected identity theft should also be reported to law enforcement or your state Attorney General.