IMS McCamish Systems, a subsidiary of InfoSys BPM Limited, revealed a massive data breach that affected nearly 6.1 million individuals, including 11,866 residents of Maine. The breach, which was caused by a ransomware attack in 2023, potentially exposed sensitive data such as Social Security numbers, medical records, financial information, and biometric data.

After discovering the breach on November 2, 2023, IMS promptly launched an investigation with the help of cybersecurity experts to assess the scope of the incident and contain any unauthorized activity. The company notified law enforcement and took steps to remediate the breach. A forensic investigation revealed that the unauthorized activity occurred between October 29 and November 2, 2023.

In a report to Maine’s attorney general, IMS disclosed that the breach impacted clients such as Bank of America and approximately 57,000 customers of deferred compensation plans. The company continued its investigation to determine the extent of the compromised personal information, which included a wide range of data such as Social Security numbers, birthdates, medical records, biometric data, email addresses, financial account details, and more.

Despite the breach, IMS stated that there have been no instances of fraudulent use of the affected personal information. As a precautionary measure, the company is providing affected individuals with 24 months of complimentary identity and credit monitoring services. IMS also assured that they have enhanced their cybersecurity measures to prevent similar incidents in the future.

The data breach incident has led to at least two proposed federal class action lawsuits against IMS, which were consolidated into one case in the U.S. District Court for the Northern District of Georgia. The lawsuits allege negligence on the part of IMS in safeguarding personal identifiable information and seek financial damages as well as injunctive relief to improve the company’s cybersecurity practices.

IMS reported that the cyberattack had a significant impact on its financials, with a 4.3% decline in revenue to $442 million in the year ended December 31, 2023. The company incurred costs amounting to $30 million to address the repercussions of the breach.

Despite the challenges posed by the data breach, IMS is focused on enhancing its cybersecurity posture and ensuring the protection of customer data. The company acknowledges the seriousness of the incident and is taking proactive steps to address the concerns raised by clients and regulators.IMS McCamish Systems, a subsidiary of InfoSys BPM Limited, revealed a massive data breach that affected nearly 6.1 million individuals, including 11,866 residents of Maine. The breach, which was caused by a ransomware attack in 2023, potentially exposed sensitive data such as Social Security numbers, medical records, financial information, and biometric data.

After discovering the breach on November 2, 2023, IMS promptly launched an investigation with the help of cybersecurity experts to assess the scope of the incident and contain any unauthorized activity. The company notified law enforcement and took steps to remediate the breach. A forensic investigation revealed that the unauthorized activity occurred between October 29 and November 2, 2023.

In a report to Maine’s attorney general, IMS disclosed that the breach impacted clients such as Bank of America and approximately 57,000 customers of deferred compensation plans. The company continued its investigation to determine the extent of the compromised personal information, which included a wide range of data such as Social Security numbers, birthdates, medical records, biometric data, email addresses, financial account details, and more.

Despite the breach, IMS stated that there have been no instances of fraudulent use of the affected personal information. As a precautionary measure, the company is providing affected individuals with 24 months of complimentary identity and credit monitoring services. IMS also assured that they have enhanced their cybersecurity measures to prevent similar incidents in the future.

The data breach incident has led to at least two proposed federal class action lawsuits against IMS, which were consolidated into one case in the U.S. District Court for the Northern District of Georgia. The lawsuits allege negligence on the part of IMS in safeguarding personal identifiable information and seek financial damages as well as injunctive relief to improve the company’s cybersecurity practices.

IMS reported that the cyberattack had a significant impact on its financials, with a 4.3% decline in revenue to $442 million in the year ended December 31, 2023. The company incurred costs amounting to $30 million to address the repercussions of the breach.

Despite the challenges posed by the data breach, IMS is focused on enhancing its cybersecurity posture and ensuring the protection of customer data. The company acknowledges the seriousness of the incident and is taking proactive steps to address the concerns raised by clients and regulators.

Извор линк