Benefytt Data Breach

What Happened?

On September 11, 2023, Benefit Management Corporation, a company registered with Osaic for the sale of securities products and provision of financial advice, detected suspicious activity within their network environment. This prompted an immediate security response and the initiation of a thorough investigation. The investigation revealed that from September 8, 2023, to September 11, 2023, an unauthorized individual had gained access to the company's computer network and extracted certain files.

Information Involved

The breach potentially compromised personal information including names and other sensitive data elements. On February 15, 2024, it was confirmed that this information could have been accessed during the incident.

Measures Taken by Benefit Management

Benefit Management has implemented additional security measures to enhance their existing protocols to prevent such breaches in the future. Understanding the potential risks posed to those affected, the company has arranged for complimentary identity monitoring services through Kroll for two years. These services include Credit Monitoring, Fraud Consultation, and Identity Theft Restoration.

To activate your complimentary identity monitoring services, please visit Kroll Monitoring Enrollment. It is crucial to activate these services as soon as possible to ensure your data is protected moving forward.

Steps You Can Take

1. Monitor Your Accounts: Regularly review your account statements and credit reports to detect any unauthorized or suspicious activity. This vigilance should continue for at least 12 to 24 months to ensure no delayed fraudulent activity occurs.
2. Credit Reports: Obtain a free copy of your credit report annually from each of the three major credit reporting agencies. You can do this by visiting Annual Credit Report or calling 1-877-322-8228.
3. Fraud Alerts and Credit Freezes: Consider placing a fraud alert or a security freeze on your credit reports. This can make it harder for identity thieves to open accounts in your name. More information on how to do this can be found at the websites of the major credit bureaus: Equifax, Experian, and TransUnion.
4. Report Suspicious Activity: If you suspect identity theft or fraud, immediately contact the Federal Trade Commission or your state's Attorney General's office. You can also file a report with local law enforcement.

Additional Resources and Contacts

For any further questions or concerns, Benefit Management Corporation has provided a dedicated phone number available Monday through Friday, from 8:00 a.m. to 5:30 p.m. CT. Additionally, residents of specific states like Connecticut, the District of Columbia, and Massachusetts have additional resources available through their local Attorney General's offices.

For detailed information about the breach and how to protect your information, please refer to the full notice provided by Benefit Management Corporation on the Massachusetts Attorney General's website.