Recently, reports began surfacing about a data breach at Cadre Services, a staffing company based in Appleton, Wisconsin. While the company has yet to confirm these reports, AlphV, the ransomware group responsible for the attack, has released its communications with a representative of Cadre, seemingly confirming the cyberattack and breach. Just last week, AlphV, leaked data allegedly stolen from Cadre, which included jobseekers' names, addresses, dates of birth, Social Security numbers, and other identity information, such as driver's license numbers and passport numbers. If the hacker's claims turn out to be true, Cadre will need to send out data breach notification letters to all individuals whose information was affected by the recent data security incident. If you receive a data breach notification from Cadre Services, it is essential you understand what is at risk and what you can do about it. A data breach lawyer can help you learn more about how to protect yourself from becoming a victim of fraud or identity theft, as well as discuss your legal options following a possible Cadre data breach. The Ransomware Attack Targeting Cadre The Cadre cyberattack and possible data breach was only recently announced, and more information is expected in the near future. A recent DataBreaches.net article provides some important information on what led up to the breach. According to this source, the incident began on about September 19, 2023, when AlphV members first contacted Cadre about information the group allegedly stole from the company's computer network. On September 22, 2023, Cadre responded, and the parties went back and forth negotiating the ransomware payment. Cadre began negotiations at $25,000 and eventually increased the possible payment to $35,000; however, this was nowhere near AlphV's demand of $300,000. Eventually, after AlphV determined that Cadre was unwilling to pay the ransom, the group leaked a sample of the stolen data. This contained sensitive information belonging to approximately 4,400 jobseekers, including names, addresses, dates of birth, Social Security numbers, and other identity information, such as driver's license numbers and passport numbers. Cadre is still dealing with the apparent ransomware attack, and the company's investigation is not yet complete. If Cadre determines that confidential consumer data was leaked in the ransomware attack, it will send data breach letters to anyone who was affected by the recent data security incident. These letters should provide victims with a list of what information belonging to them was compromised. More Information About Cadre Services Cadre Services is a business services company based out of Appleton, Wisconsin. Cadre provides staffing/employment services to companies in the accounting, administrative, banking, customer service, human resources, insurance, legal, purchasing, and sales fields. Cadre employs more than 45 people and generates approximately $5 million in annual revenue. DISCLAIMER: Because of the generality of this update, the information provided herein may not be applicable in all situations and should not be acted upon without specific legal advice based on particular situations.
This Cyber News was published on www.jdsupra.com. Publication date: Thu, 30 Nov 2023 23:19:27 +0000