On July 10, 2023, Rockland Trust Company (“Rockland Trust Bank”) filed a Notice of Data Security Incident with the Attorney General of Maine after discovering that one of the company’s vendors experienced a data breach related to the vendor’s use of the MOVEit file transfer software. In this notice, Rockland Trust explains that the incident resulted in an unauthorized party being able to access consumers’ sensitive information, which includes their names, addresses, account numbers, email addresses, bill payment amounts, and the payees’ names and addresses. After Rockland Trust and its vendor completed an investigation, Rockland Trust began sending out data breach notification letters to all individuals whose information was affected by the recent data security incident.
If you received a data breach notification from Rockland Trust Company, it is essential you understand what is at risk and what you can do about it. While this data breach did not affect Rockland Trust’s computer network, it did involve confidential customer information provided to a third-party. As a result, you now face an increased risk of identity theft and other frauds. A data breach lawyer can help you learn more about how to protect yourself from becoming a victim of fraud or identity theft as well as discuss your legal options following the Rockland Trust Bank / MOVEit data breach. For more information, please see our recent piece on the topic here.
What Caused the Data Breach Affecting Rockland Trust Bank Clients?
The Rockland Trust Bank data breach was only recently announced, and more information is expected in the near future. However, Rockland Trust’s filing with the Attorney General of Maine provides some important information on what led up to the breach. According to this source, Rockland Trust uses a third-party vendor to process online banking bill pay transactions. This vendor uses a file-transfer software called MOVEit.
On May 31, 2023, Progress Software, the creator of MOVEit, announced a previously unknown vulnerability within MOVEit. On June 13, 2023, the third-party vendor informed Rockland Trust that certain bank customers were affected by the breach. Based on what the vendor told Rockland Trust, the period of unauthorized access was between May 27, 2023 and May 31, 2023.
After learning that sensitive consumer data was accessible to an unauthorized party, Rockland Trust reviewed the compromised files to determine what information was leaked and which consumers were impacted. While the breached information varies depending on the individual, it may include your name, address, account number, email address, bill payment amount, and the payee’s name and address details.
On July 10, 2023, Rockland Trust Bank sent out data breach letters to anyone who was affected by the recent data security incident.
More Information About Rockland Trust Company
Founded in 1907, Rockland Trust Company is a financial services company based out of Rockland, Massachusetts. The company offers a range of banking, investment, and insurance products to businesses and individuals through retail branches, commercial lending offices, investment management offices, and residential lending centers. Rockland Trust Bank operates more than 85 branches in Massachusetts and Rhode Island. Rockland Trust Bank employs more than 1,691 people and generates approximately $531 million in annual revenue.