Posted On May 11, 2023 Consumer Privacy & Data Breaches
May 11 – PRGX Global, Inc. (PRGX) learned that a third party had gained access to private customer data held on the business’ computer network on May 5, 2023, and as a result, the firm filed a report of data breach with the Attorney General of Maine. According to the business’s report, the event led to unlawful access to the identities, bank account information, and Social Security numbers of consumers. Once it was established that consumer data had been compromised, PRGX started notifying everyone who had been impacted by the hack.
Console & Associates, P.C.’s data breach lawyers are actively looking into the PRGX data breach. If you have received a breach notice and are curious about the dangers of identity theft and what you can do to protect yourself, we are providing free consultations where we can go through your legal options for obtaining compensation from PRGX.
PRGX Global, Inc. offers consulting services to businesses in the banking, media, manufacturing, utilities, and telecom sectors, as well as global recovery audit and spend analytics services. More than 1,500 people are employed by PRGX Global, which was founded in 1970 and is headquartered in Atlanta, Georgia. The company’s yearly sales is around $41 million.
The PRGX computer system had an outage where portions of it were unreachable on April 9, 2022, as stated in a document filed with the Maine Attorney General’s Office. In response, PRGX took measures to protect its network and started an investigation with the aid of information security professionals.
According to PRGX’s investigation, between April 8, 2022 and April 9, 2022, an unknown party had access to the company’s network and may have downloaded files containing private consumer information.
PRGX Global has begun reviewing the affected files to ascertain what data was leaked and how many customers were affected after the discovery that sensitive data was made accessible to a hacker. Your name, bank account information, and Social Security number may have been compromised, albeit the specific details depend on the individual.
Data breach letters were sent out by PRGX Global to everybody whose data was exposed on May 5, 2023.
If you get a notification of a data breach from PRGX, it is likely that the incident included your personal information. It’s possible that hackers have gained access to your personal data and may be using it for identity theft and other illegal purposes. Finding the hackers responsible for a data breach may be challenging. Regardless of whether the hackers are identified, it is possible that they are not the only ones responsible for the security lapse. Even if they committed the crime, victims may still be allowed to sue the corporation that suffered the breach for compensation under U.S. data breach laws.
Companies like PRGX may be victims of the assault, but they also have the burden of protecting this kind of sensitive data. Companies who fail to take the necessary safeguards to protect their customers’ personal information may be held liable for negligence under state and federal law.
Companies that store sensitive information data have a duty to protect it under U.S. data breach regulations. They risk financial liability in the event of a breach that results in unauthorized access to sensitive information. Responsibility regulations after a violation aren’t usually so simple. For this reason, if a breach occurs, you should seek legal counsel.
The consumer privacy lawyers at Console & Associates, P.C. help customers affected by data and security breaches pursue legal solutions by offering free consultations. By explaining your rights in clear, concise terms, we help you make an informed decision about your next steps. If you are a victim of the PRGX Global, Inc. data breach, Console & Associates, P.C. will investigate at no charge to you and offer advice on how to proceed. If you decide to pursue a case, rest assured that we don’t get paid unless you do. If your claim is successful, legal fees are either paid out of the funds recovered or by the defendant. If your claim is not successful, you pay nothing.
Below is a portion of the letter sent to affected individuals:
PRGX Global, Inc. (“PRGX”) is writing to inform you of a recent data security incident that may involve some of your information. We are providing you with information about the event, our response, and steps you may take to better protect against the possibility of identity theft and fraud, should you feel it is appropriate to do so.
What Happened? On April 9, 2022, we became aware that certain computer servers and systems in our environment were inaccessible. We immediately took steps to secure our systems and launched an investigation with the assistance of cyber incident response specialists to determine the full nature and scope of the event. We also promptly reported the event to federal law enforcement. Through our investigation, we determined that an unknown actor accessed our systems between April 8, 2022 and April 9, 2022, and took or viewed certain files. Therefore, in an abundance of caution, we conducted a thorough review of the affected files, with the assistance of forensic data review specialists, to identify whether personal information was contained therein and to whom that information related. We then worked to confirm the address information for those individuals and entities. This review was recently concluded on March 31, 2023.
What Information Was Involved? While we currently have no evidence that any information has been used to commit identity theft or fraud, the investigation determined the following types of your information were present in the impacted environment: your name, [Redacted].
What We Are Doing. Upon learning of the event, we immediately took steps to secure our systems and conducted an investigation to confirm the nature and scope of the activity and determine who may be affected. Additionally, while we have safeguards in place to protect data in our care, we have taken steps to further enhance these protections and continue to monitor these safeguards as part of our ongoing commitment to data security. We also reported this event to federal law enforcement and government regulators. Although we have no evidence that any information has been used to commit identity theft or fraud, as an added precaution, we are also offering you [Redacted] months of credit monitoring and identity restoration services at no cost to you through IDX, A ZeroFox Company. Enrollment instructions are enclosed with this letter.
What You Can Do. We encourage you to remain vigilant against incidents of identity theft and fraud by reviewing your account statements and monitoring your credit reports for suspicious activity and to detect errors. Please review the enclosed Steps You Can Take to Help Protect Your Personal Information for useful information on what you can do to better protect against possible misuse of your information. You may also enroll in the free credit monitoring services we have provided for you.
For More Information. If you have additional questions, you may our call center at 1-888-567-0207 (toll free), Monday through Friday, 9 am to 9 pm Eastern Time, excluding U.S. holidays. You may also write to PRGX at 200 Galleria Parkway, Suite 450, Atlanta, GA 30339, Attn: Chief Compliance Officer.