In an update to its April 2024 announcement that the data of 1.9+ million customers had been compromised, debt collection agency Financial Business and Consumer Solutions (FBCS) has revised that number to more than 3.2 million people.
The FBCS breach was discovered on February 26 this year, when unauthorised access to "certain systems" in the company's network were uncovered. FBCS said that computer systems outside of its network weren't affected. This included those of its clients.
However, an investigation revealed that the unauthorised access had taken place between February 14-26 and that "information provided by customer organisations related to individuals may have been accessed or exfiltrated" by the threat actor.
On April 26 FBCS reported that 1,955,385 million customers had personal information compromised the breach. This included full name, date of birth, social security number, driver’s license number or ID card, and account information.
On May 29, FBCS submitted a Data Breach Notification with the Office of the Maine Attorney General, stating that the number of those affected by the February breach was now 3,226,631, nearly 1.3 million more than the original figure.
Those affected by the breach have been contacted by FBCS, which is offering complimentary credit monitoring and identity restoration services.
"We encourage you to remain vigilant against incidents of identity theft and fraud," the company said in its correspondence to victims. "Monitor your account statements to detect errors and to review your credit reports for suspicious activity."