Young Consulting

Young Consulting, now trading as Connexure, experienced a cybersecurity incident between April 10 and 13, 2024. The attack compromised data of over 1 million individuals, including names, Social Security numbers, dates of birth, and insurance policy/claim information. The BlackSuit group claimed responsibility, suggesting it was a ransomware attack, although the company did not confirm this. The ongoing forensic analysis has led to updates in the victim count, with the latest figure being 1,071,336 affected individuals.

Source: https://www.theregister.com/2025/07/03/young_consulting_breach_million/

TPRM report: https://scoringcyber.rankiteo.com/company/young-consulting-group

"id": "you926070325",
"linkid": "young-consulting-group",
"type": "Ransomware",
"date": "7/2025",
"severity": "100",
"impact": "5",
"explanation": "Attack threatening the organization's existence"

{'affected_entities': [{'customers_affected': 1071336,
                        'industry': 'Insurance',
                        'name': 'Young Consulting (now Connexure)',
                        'type': 'Software Vendor'}],
 'attack_vector': 'Unauthorized Network Access',
 'customer_advisories': 'Notification letters offering credit monitoring and '
                        'identity theft restoration',
 'data_breach': {'data_exfiltration': True,
                 'number_of_records_exposed': 1071336,
                 'personally_identifiable_information': True,
                 'sensitivity_of_data': 'High',
                 'type_of_data_compromised': ['Names',
                                              'Social Security numbers',
                                              'Dates of birth',
                                              'Insurance policy/claim '
                                              'information',
                                              'Passports',
                                              'Internal company documents']},
 'date_detected': '2024-04-10',
 'date_publicly_disclosed': '2024-08-01',
 'description': 'Young Consulting, now trading as Connexure, experienced a '
                'suspected ransomware attack between April 10 and 13, 2024, '
                'affecting over 1 million individuals. The BlackSuit group '
                'claimed responsibility for the attack, which involved '
                'unauthorized access and data exfiltration.',
 'impact': {'data_compromised': ['Names',
                                 'Social Security numbers',
                                 'Dates of birth',
                                 'Insurance policy/claim information',
                                 'Passports',
                                 'Internal company documents']},
 'investigation_status': 'Ongoing',
 'motivation': 'Data Theft',
 'ransomware': {'data_exfiltration': True, 'ransomware_strain': 'BlackSuit'},
 'references': [{'source': 'The Register'}],
 'regulatory_compliance': {'regulatory_notifications': "Filing with Maine's "
                                                       'attorney general'},
 'response': {'communication_strategy': 'Offering 12 months of credit '
                                        'monitoring and identity theft '
                                        'restoration'},
 'threat_actor': 'BlackSuit Group',
 'title': 'Data Breach at Young Consulting',
 'type': 'Data Breach'}