A data breach at Communications Data Group (CDG), a billing vendor for Duo Broadband, exposed personal data of 42,518 customers. The breach included names, addresses, dates of birth, and Social Security numbers. The incident, discovered on February 13, 2025, was an attempt to deploy ransomware. Ransomware gang Qilin claimed responsibility in March 2025. CDG has not verified Qilin's claim and it is unclear if a ransom was paid. CDG is offering free credit monitoring to affected victims.
TPRM report: https://scoringcyber.rankiteo.com/company/communications-data-group-cdg-
"id": "com327051825",
"linkid": "communications-data-group-cdg-",
"type": "Ransomware",
"date": "5/2025",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"{'affected_entities': [{'customers_affected': 42518,
'industry': 'Telecommunications',
'name': 'Communications Data Group (CDG)',
'type': 'Billing Vendor'}],
'attack_vector': 'Ransomware',
'data_breach': {'number_of_records_exposed': 42518,
'personally_identifiable_information': True,
'sensitivity_of_data': 'High',
'type_of_data_compromised': ['Personal Identifiable '
'Information']},
'date_detected': '2025-02-13',
'date_publicly_disclosed': '2025-03',
'description': 'A data breach at Communications Data Group (CDG), a billing '
'vendor for Duo Broadband, exposed personal data of 42,518 '
'customers. The breach included names, addresses, dates of '
'birth, and Social Security numbers. The incident, discovered '
'on February 13, 2025, was an attempt to deploy ransomware. '
'Ransomware gang Qilin claimed responsibility in March 2025. '
"CDG has not verified Qilin's claim and it is unclear if a "
'ransom was paid. CDG is offering free credit monitoring to '
'affected victims.',
'impact': {'data_compromised': ['names',
'addresses',
'dates of birth',
'Social Security numbers']},
'motivation': 'Financial',
'ransomware': {'ransomware_strain': 'Qilin'},
'threat_actor': 'Qilin',
'title': 'Data Breach at Communications Data Group',
'type': 'Data Breach'}