- BCNYS suffered a cyber attack in February and discovered it in August
- Personal sensitive information, payment and health care has been stolen
- There is not yet proof of abuse in the will
The Business Council of New York State (BCNYS), an association representing companies, chambers of commerce and professional organizations in New York, confirmed that it had undergone a cyber attack in which it lost sensitive information on tens of thousands of people.
The Bcnys Filed A Report with the Office of the Maine Attorney General, in Which it confirmed the Breach, and detailed the type of data that was stolen – in Total, 47,329 individuals WERE POTENTIALLY ACCOUNTED by the incident, when identified cybercriminals Stole Full Names, Numbers (SSN), dates of Birth, state identification numbers, financial institution names, financial account and routing number information, payment card number, pines, payment dates of the card, taxpayer identification numbers and electronic signature information.
It also included health data such as medical suppliers, diagnostic and medical conditions, prescription information, processing data and medical procedures and health care information.
How to stay safe
The incident apparently occurred at the end of February 2025, but BCNYS only noticed it until August, when he launched an investigation and informed the relevant authorities.
Until now, there is no evidence that stolen files have been used in identity theft, phishing or any other cybercrime – but of course, this does not mean that it does not happen, or that it will not happen.
Pirates can use stolen data to open bank accounts or credit lines, make unauthorized purchases, produce false income statements and even access medical services or prescriptions under the name of someone else.
The victims must place a fraud alert or a credit freezing with the main credit offices, monitor the bank and credit cards daily, and register for the protection of identity theft or credit monitoring, because BCNYS offers it free of charge.
They should also modify passwords and activate multifactor authentication on all accounts, inform their banks and insurers of potential fraud, and ask an IRS identity protection pin to block fake tax declarations.
For medical data, victims should examine the explanation of benefits of advantages (EOB) and contact suppliers to report any suspicious medical activity.
Via Bleeping Compompute
