Better Business Bureau (BBB) Serving the Pacific Southwest, Central & Inland California attackers took a trove of extremely sensitive details, ranging from Social Security numbers to medical information.
Attackers breached the organization a year ago, with BBB discovering the intrusion on May 31st, 2024, the organization’s regional branch admitted in a data breach notification. The company claims that after securing the penetrated systems, its “priority was to understand what happened.”
After nearly a year, in late April of 2025, BBB finally completed its investigation, concluding that thousands of individuals had extremely sensitive details exposed. Information that attackers may have accessed includes:
- Names
- Social Security numbers
- Dates of birth
- Driver’s licenses
- Government ID numbers
- Financial account information
- Payment card information
- Online credentials
- Medical information
- Health insurance policy information
According to information BBB Serving the Pacific Southwest, Central & Inland California submitted to the Maine Attorney General’s Office, over 8,500 individuals were exposed in the attack.
The stolen details are a treasure trove for attackers. Malicious actors could use them for identity theft, financial fraud, medical fraud, and account takeovers. There’s ample data for cybercrooks to open credit accounts or even file fraudulent tax returns. At least in theory, attackers could attempt to impersonate victims to illegally obtain healthcare services.
What makes it worse is that it took the organization nearly a year to reveal what type of details were exposed. Cybercriminals tend to move fast, and if the data was stolen, it may have been sold on dark web forums.
However, BBB claims it hasn’t seen “any evidence of personal information being misused for identity fraud to date.” The organization said it will provide impacted individuals with complementary credit monitoring services.
Your email address will not be published. Required fields are markedmarked