Stallcup & Associates, CPAs was attacked by a ransomware virus, and some of their network files were secretly encrypted.
The compromised information included name, gender, birth date, telephone number(s), address, social security number, all employment (W-2) information, 1099 information, direct deposit bank account information, including account number and routing information (if provided to us), and supporting records.
IT consultant and forensic security firm investigated the incident and Infected systems' hard drives have had malware deleted; internal software system management modifications have been performed; and all network firewalls, computers, and security measures have been verified to be working properly.
Source: https://www.databreaches.net/notice-of-data-incident-at-stallcup-associates-cpas/
TPRM report: https://scoringcyber.rankiteo.com/company/stallcup-&-associates-cpas
"id": "sta223018622",
"linkid": "stallcup-&-associates-cpas",
"type": "Ransomware",
"date": "09/2016",
"severity": "75",
"impact": "2",
"explanation": "Attack limited on finance or reputation"{'affected_entities': [{'industry': 'Finance',
'name': 'Stallcup & Associates, CPAs',
'type': 'CPA Firm'}],
'data_breach': {'personally_identifiable_information': ['Name',
'Gender',
'Birth Date',
'Telephone Number(s)',
'Address',
'Social Security '
'Number'],
'type_of_data_compromised': ['Name',
'Gender',
'Birth Date',
'Telephone Number(s)',
'Address',
'Social Security Number',
'W-2 Information',
'1099 Information',
'Direct Deposit Bank Account '
'Information',
'Supporting Records']},
'description': 'Stallcup & Associates, CPAs was attacked by a ransomware '
'virus, resulting in the encryption of some of their network '
'files. The compromised information included name, gender, '
'birth date, telephone number(s), address, social security '
'number, all employment (W-2) information, 1099 information, '
'direct deposit bank account information, including account '
'number and routing information (if provided to us), and '
'supporting records.',
'impact': {'data_compromised': ['Name',
'Gender',
'Birth Date',
'Telephone Number(s)',
'Address',
'Social Security Number',
'W-2 Information',
'1099 Information',
'Direct Deposit Bank Account Information',
'Supporting Records']},
'ransomware': {'data_encryption': True},
'response': {'remediation_measures': ["Deleted malware from infected systems' "
'hard drives',
'Performed internal software system '
'management modifications',
'Verified all network firewalls, '
'computers, and security measures are '
'working properly'],
'third_party_assistance': ['IT consultant',
'Forensic security firm']},
'title': 'Ransomware Attack on Stallcup & Associates, CPAs',
'type': 'Ransomware'}