On December 7, 2023, Ongoing Operations, a subsidiary of Trellance Cooperative Holdings, Inc., posted a notice of data breach on its website after discovering that the company’s computer system was the target of a recent cyberattack. In this notice, Ongoing Operations explains that the incident may have resulted in an unauthorized party being able to access consumers’ sensitive information. Upon completing its investigation, Ongoing Operations began sending out data breach notification letters to all individuals whose information was affected by the recent data security incident.
If you receive a data breach notification from Ongoing Operations, it is essential you understand what is at risk and what you can do about it. A data breach lawyer can help you learn more about how to protect yourself from becoming a victim of fraud or identity theft, as well as discuss your legal options following the Ongoing Operations data breach. For more information, please see our recent piece on the topic here.
What Caused the Ongoing Operations Data Breach?
The Ongoing Operations data breach was only recently announced, and more information is expected in the near future. However, Ongoing Operations’ website notice entitled “Ongoing Operations Cyber Security Incident” provides some important information on what led up to the breach. Additionally, various news outlets have covered the breach, due to the significant impact it had on credit unions across the country.
According to these sources, on November 26, 2023, Ongoing Operations was the target of a cyberattack. In response, Ongoing Operations secured its systems, notified law enforcement, and then began working with third-party data security specialists to investigate the incident.
The Ongoing Operations investigation is ongoing. However, the company hints at a data breach in its December 7, 2023 website notice, explaining that it is “reviewing the impacted data to determine exactly what information was impacted and to whom that information belonged.”
A recent filing by Mountain Valley Federal Credit Union (Mountain Valley CU”), a credit union that was affected by the incident, indicates that its data processing vendor, FedComp, Inc., informed Mountain Valley CU that its computer operating system ‘Trellance’ was the victim of a ransomware attack. While this doesn’t necessarily explain how FedComp, Inc. was involved, it does provide additional confirmation of the attack, as well as its scope.
On December 7, 2023, Ongoing Operations posted notice of the incident on its website. In this notice, Ongoing Operations explains that it has sent out data breach letters to anyone who was affected by the recent data security incident. These letters should provide victims with a list of what information belonging to them was compromised.
More Information About Ongoing Operations
Ongoing Operations is a business solutions company based in Hagerstown, Maryland. Ongoing Operations provides an array of technology services, such as IT services, disaster recovery services and telecom services, to credit unions across the United States. Ongoing Operations employs more than 31 people and generates approximately $7 million in annual revenue.
