There are those who may say, “Better late than never.” There are probably also those who say, “How should egregiously late notification be punished?”
SC Media reports that some people are first being notified of the 2023 MOVEit data breach:
The Texas Dow Employees Credit Union (TDECU) on Aug. 23 sent letters to more than 500,000 people saying their personal data was compromised during last year’s MOVEit attacks carried out by the Clop ransomware gang.
The MOVEit attacks were first discovered and reported in late May 2023, affecting more than 2,700 organizations and 95 million people.
In a notice on its website, TDECU said it first discovered on July 30 that the personal information of TDECU members was potentially removed from MOVEit by the threat actor between May 29-31 of last year.
Read more at SC Media.