On October 8, 2024, CreditRiskMonitor, Inc. (“CRMZ”) filed notices with the Securities & Exchange Commission and the Attorney General of Massachusetts after discovering that information on the company’s IT network was compromised by an unauthorized actor. In these notices, CRMZ explains that the incident resulted in an unauthorized party being able to access consumers’ sensitive information, which includes their names and Social Security numbers. Upon completing its investigation, CRMZ began sending out data breach notification letters to all individuals whose information was affected by the recent data security incident.
If you received a data breach notification from CreditRiskMonitor, Inc., it is essential you understand what is at risk and what you can do about it. A data breach lawyer can help you learn more about how to protect yourself from becoming a victim of fraud or identity theft, as well as discuss your legal options following the CreditRiskMonitor data breach. For more information, please see our recent piece on the topic here.
What Caused the CreditRiskMonitor Data Breach?
The CreditRiskMonitor data breach was only recently announced, and more information is expected in the near future. However, CRMZ’s filing with the Securities & Exchange Commission provides some important information on what led up to the breach. According to this source, on July 19, 2024, CRMZ detected unauthorized access within its computer network. In response, CRMZ secured its systems, reported the matter to law enforcement, and then began working with outside cybersecurity experts to investigate the incident as well as what, if any, information in the company’s possession may have been subject to unauthorized access.
Ultimately, this investigation concluded that files stored on CRMZ’s computer network were accessible to an unauthorized actor between July 8, 2024 and July 17, 2024, including those containing confidential data belonging to certain individuals.
After learning that sensitive consumer data was accessible to an unauthorized party, CreditRiskMonitor reviewed the compromised files to determine what information was leaked and which consumers were impacted. While the breached information varies depending on the individual, it may include your name and Social Security number.
On October 8, 2024, CreditRiskMonitor sent out data breach letters to anyone who was affected by the recent data security incident. These letters should provide victims with a list of what information belonging to them was compromised.
More Information About CreditRiskMonitor, Inc.
CreditRiskMonitor, Inc. is a customer relationship software company based out of Valley Cottage, New York. CRMZ provides a range of services, including credit solutions and supply chain solutions. CRMZ also publishes web-based financial information for corporate credit professionals and procurement professionals. Approximately 40 percent of Fortune 1000 companies rely on CRMZ’s products and services. CreditRiskMonitor employs more than 99 people and generates approximately $19 million in annual revenue.
