Zenith American Solutions Data Breach Affects 11,000 Americans

Third-party benefits administration company, Zenith American Solutions, recently experienced a data breach exposing sensitive personally identifiable information, known as "PII". The breach was discovered on September 6, 2024, when a sophisticated phishing attack compromised an employee's email account.

This incident resulted in unauthorized access to several email folders, potentially exposing sensitive personal information.

The breach affected a total of 11,029 individuals across the United States, with 46 individuals in Maine and 170 in Massachusetts specifically impacted.

The exposed information varies by individual but may include:

• Name
• Date of birth
• Social Security number
• Birth certificate
• Marriage certificate
• Financial and banking information

The severity of this breach is underscored by the nature of the information exposed, which can be used for identity theft and financial fraud. The phishing attack was targeted and sophisticated, compromising a single user's mailbox and allowing the hacker brief access to sensitive data.

Zenith American Solutions's Response

In response to the breach, Zenith American Solution disconnected the hacker's access, reset the employee's credentials, and implemented enhanced multi-factor authentication. Additionally, the affected employee underwent phishing prevention retraining.

To further strengthen their defenses, Zenith American Solutions has deployed additional phishing prevention tools. They also engaged a third-party firm to conduct a thorough analysis to identify affected individuals and the extent of data exposure. The incident was reported to law enforcement to aid in the investigation.

For those potentially affected by the breach, Zenith American Solutions is offering complimentary identity monitoring and protection services through Experian’s IdentityWorksSM product. Affected individuals are encouraged to take advantage of these services by contacting the company within 30 days of receiving their notification letter. Furthermore, individuals are advised to monitor their credit reports and account statements for any unauthorized activity.

About Zenith American Solutions

Zenith American Solutions is the largest third-party administrator in the United States, specializing in Taft-Hartley trust funds. With over 80 years of experience, the company serves more than 2 million American workers and over 710 client funds nationwide. Zenith American Solutions operates 42 offices across the country and employs over 1,750 professionals dedicated to providing tailored benefits administration services.

For more information about the data breach, affected individuals in Maine can refer to the Maine Attorney General's disclosure. Those in Massachusetts can access details through the Massachusetts Attorney General's disclosure. Vermont residents can find more information on the Vermont Attorney General's disclosure.