Employee eligibility verification solutions provider Form I-9 Compliance suffered a data breach on February 5, 2024. Its impact is way, waaaaay bigger than initially reported. Security Week reports:
In late May, the company started informing customers that someone had gained unauthorized access to its network in early February. The intrusion was detected on April 12 and some systems were shut down as part of the company’s incident response process.
Based on data provided by Form I-9 Compliance to the Maine Attorney General’s Office, when it initially started notifying impacted individuals, Form I-9 determined that the breach had affected roughly 27,000 people.
By now, the number is more than 193,000.
Read more at SecurityWeek. No ransomware gang has claimed responsibility for any attack on this firm and it is not clear whether or not this attack included any ransom demand.