On September 6, 2024, TIAA filed a notice of data breach with the Attorney General of California after discovering that a data breach at Infosys McCamish Systems, LLC (IMS”) resulted in confidential data being exposed. In this notice, TIAA explains that the incident was not caused by a breach of TIAA’s systems, but still resulted in an unauthorized party being able to access sensitive information belonging to clients. Upon completing its investigation, TIAA began sending out data breach notification letters to all individuals whose information was affected by the recent data security incident.
If you received a data breach notification from TIAA or Infosys McCamish, it is essential you understand what is at risk and what you can do about it. A data breach lawyer can help you learn more about how to protect yourself from becoming a victim of fraud or identity theft, as well as discuss your legal options following the Infosys McCamish / TIAA data breach. For more information, please see our recent piece on the topic here.
What Caused the Data Breach Affecting TIAA Clients?
The TIAA / Infosys McCamish data breach was only recently announced, and more information is expected in the near future. However, TIAA’s filing with the Attorney General of California provides some important information on what led up to the breach. According to this source, on November 2, 2023, Infosys McCamish learned that an unauthorized party had accessed its computer network. In response, IMS secured its systems and then launched an investigation to learn more about the incident and what, if any, consumer information was leaked.
Through this investigation, IMS learned that the unauthorized party accessed its network between October 29, 2023 and November 2, 2023, including files containing confidential information belonging to TIAA clients. IMS was in possession of TIAA client information because IMS provides administrative services to TIAA.
After learning that sensitive consumer data was accessible to an unauthorized party, TIAA reviewed the compromised files to determine what information was leaked and which consumers were impacted.
On September 6, 2024, TIAA sent out data breach letters to anyone who was affected by the recent data security incident. These letters should provide victims with a list of what information belonging to them was compromised.
More Information About TIAA
Founded in 1918 and based in New York City, New York, the Teachers Insurance and Annuity Association of America is a provider of financial services in the academic, research, medical, cultural, and governmental fields. TIAA operates its major operations out of offices in Denver, Colorado; Charlotte, North Carolina; and Dallas, Texas. TIAA employs more than 15,800 people and generates approximately $40 billion in annual revenue.
