The Business Council of New York State (BCNYS) has disclosed a significant cybersecurity breach that occurred in February, compromising the personal, financial, and health data of 47,329 people.
As New York’s largest employer association, BCNYS represents more than 3,000 organizations including chambers of commerce, trade groups, and global corporations collectively employing over 1.2 million residents. According to a filing with Maine’s attorney general, attackers infiltrated BCNYS’s internal systems between February 24 and 25. Shockingly, the breach went undetected until August 4, when a forensic investigation revealed that sensitive files had been accessed and stolen.
In notification letters sent to affected individuals, BCNYS stated it acted swiftly to contain the breach and enlisted top cybersecurity experts to assess the damage and secure its systems. While there’s currently no evidence of identity theft or fraud, the council is proactively informing those whose data may have been exposed.
The stolen information includes full names, Social Security numbers, birth dates, state IDs, banking details, payment card data, taxpayer IDs, and electronic signatures. Additionally, health-related records such as medical diagnoses, treatment details, prescriptions, and insurance information were also compromised.
To mitigate potential risks, BCNYS is offering complimentary credit monitoring services to individuals whose Social Security numbers were affected. The organization urges all impacted parties to stay vigilant by reviewing financial statements and monitoring credit reports for any suspicious activity.
Found this article interesting? Follow us on X(Twitter) ,Threads and FaceBook to read more exclusive content we post.
