BusinessCA State WireGeneral NewsMN State WireNJ State WireNV State WireTechnologyTN State WireU.S. NewsVA State Wire Hack Impacts 2.5 Million Genworth Policyholders and 769,000 Retired California Workers by Sophia Chen June 23, 2023 written by Sophia Chen June 23, 2023 0 comments Bookmark 91 A significant cyber breach has affected a substantial number of individuals, with approximately 769,000 retired California employees and beneficiaries falling victim to Russian cybercriminals. These malicious actors gained unauthorized access to a popular file-transfer application, stealing sensitive personal information, including Social Security numbers. The breach was attributed to a third-party vendor responsible for verifying deaths. Disturbingly, this same vendor, PBI Research Services/Berwyn Group, also experienced a data breach at the hands of the same criminal gang, compromising the personal data of at least 2.5 million policyholders from Genworth Financial, a Fortune 500 insurer. The stolen information, including Social Security numbers, poses a significant risk to the affected individuals. In response to this breach, the California Public Employees Retirement system has taken action to mitigate the damage. They are providing the affected members with two years of free credit monitoring services to help safeguard their financial well-being. Similarly, Genworth Financial has committed to offering credit monitoring and identity theft protection measures to their impacted policyholders. These measures aim to minimize the potential harm resulting from the breach. The breach of the MOVEit file-transfer program, discovered recently, has had far-reaching consequences, affecting numerous organizations worldwide. Cybersecurity experts estimate that hundreds of organizations have fallen victim to this breach, including prominent entities such as the U.S. Department of Energy, several federal agencies, Johns Hopkins University, Ernst & Young, the BBC, and British Airways. Disturbingly, the breach has even affected the personal data of more than 9 million motorists in Oregon and Louisiana. The criminal gang responsible for this hack, known as Cl0p, is resorting to extortion tactics. They are demanding payment from the victims under the threat of publicly exposing their stolen data. This situation highlights the increasing risks associated with supply-chain hacks, emphasizing that the overall security of a network is only as strong as its weakest link in the digital ecosystem. The stolen data includes sensitive personal details such as names, birth dates, and Social Security numbers. It may also include information about spouses or domestic partners and children. CalPERS, taking swift action to address the breach, intends to notify the affected individuals through letters, providing them with essential information and guidance. Genworth Financial promptly disclosed the hack on the MOVEit platform, which was managed by PBI Research, in a filing with the Securities and Exchange Commission. While it remains uncertain which other customers of PBI Research have been affected, the company’s website lists public pension funds from Nevada, New Jersey, and Tennessee among its customers for mortality verification services. CalPERS, whose assets exceed $442 billion, expressed its strong disapproval of the breach, considering it inexcusable. CEO Marcie Frost emphasized the organization’s commitment to taking immediate action to protect the financial interests of its members and implementing long-term security measures. Security experts stress the importance of recognizing the vulnerabilities inherent in the software used by organizations, particularly in the context of supply-chain hacks. These incidents underline the critical role of network security, which relies on the strength of every digital link within the ecosystem. This story has been corrected to accurately reflect that Genworth disclosed the hack on Thursday, not June 16. Correction: Sophie Austin is a corps member for the Big Big News/Report for America Statehouse News Initiative. Report for America is a nonprofit national service program that places journalists in local newsrooms to report on undercovered issues. Follow Austin on Twitter: @sophieadanna Table of Contents Frequently Asked Questions (FAQs) about Data breachWhat is the extent of the hack mentioned in the text?What information was stolen in the breach?Who was responsible for the breach?Which organizations were affected by the breach?What actions have been taken to mitigate the damage caused by the breach?What is a supply-chain hack?More about Data breach Frequently Asked Questions (FAQs) about Data breach What is the extent of the hack mentioned in the text? The hack has impacted approximately 2.5 million Genworth policyholders and 769,000 retired California workers and beneficiaries. What information was stolen in the breach? The stolen data includes personal information such as names, birth dates, and Social Security numbers. It may also include details of spouses or domestic partners and children. Who was responsible for the breach? The breach was carried out by a criminal gang known as Cl0p, which is responsible for extorting victims and threatening to release their stolen data unless a ransom is paid. Which organizations were affected by the breach? The breach of the MOVEit file-transfer program has affected numerous organizations globally, including the U.S. Department of Energy, several federal agencies, Johns Hopkins University, Ernst & Young, the BBC, and British Airways, among others. What actions have been taken to mitigate the damage caused by the breach? The California Public Employees Retirement system is offering affected members two years of free credit monitoring. Genworth Financial has also committed to providing credit monitoring and ID theft protection. Additionally, CalPERS plans to send letters to those affected by the breach to provide necessary information and guidance. What is a supply-chain hack? A supply-chain hack refers to an attack that targets a third-party vendor or service provider to gain unauthorized access to an organization’s systems or data. In this case, the breach occurred through a third-party vendor responsible for verifying deaths. More about Data breach Genworth Financial California Public Employees Retirement System (CalPERS) MOVEit Cl0p Ransomware Gang You Might Be Interested In A Historic Day Awaits at the Women’s World Cup: Colombia, Jamaica, and Morocco Eye Quarterfinal Berths Urgent Reforms in Oil and Gas Industry Vital for Climate Protection, Report Urges Disproportionate Effects of Cash Bail on Communities of Color Addressed as Illinois Abolishes the Practice Students around the world suffered huge learning setbacks during the pandemic, study finds “Schools Struggle with Misuse of Emergency Petitions for Students” Indonesia’s Anak Krakatau volcano spews ash, lava in new eruption BusinessCA State WireCalifornia Public Employees Retirement systemCl0pCybercrimeCybersecurityData breachGeneral NewsGenworth FinancialIdentity theftMN State WireMOVEitNJ State WireNV State WirePBI Research Servicespersonal informationransomSocial Security numberssupply-chain hacksTechnologythird-party vendorTN State WireU.S. NewsVA State Wire Share 0 FacebookTwitterPinterestEmail Sophia Chen Follow Author Sophia Chen is a lifestyle journalist who covers the latest trends and developments in the world of fashion, beauty, and lifestyle. She enjoys exploring new fashion and beauty trends, and she is always on the lookout for new products and experiences to share with her readers. previous post Canada Passes Law Requiring Google and Meta to Compensate Media Outlets for News next post Investigation Underway to Determine Cause of Submersible Implosion that Claimed Five Lives on Titanic-bound Mission You may also like Bookmark A woman who burned Wyoming’s only full-service abortion... December 28, 2023 Bookmark Argument over Christmas gifts turns deadly as 14-year-old... December 28, 2023 Bookmark Danny Masterson sent to state prison to serve... December 28, 2023 Bookmark Hong Kong man jailed for 6 years after... December 28, 2023 Bookmark AP concludes at least hundreds died in floods... December 28, 2023 Bookmark Live updates | Israeli forces raid a West... December 28, 2023 Leave a Comment Cancel Reply Save my name, email, and website in this browser for the next time I comment. Δ