Retail Capital notifies hundreds following security incident
Michigan-based Retail Capital is notifying more than 700 individuals that unauthorized access was gained to the electronic mailbox of a sales manager, and personal information may have been compromised.
How many victims? 741.
What type of personal information? Names, business addresses, Social Security numbers, driver's license numbers and bank account numbers or statements.
What happened? Unauthorized access was gained to the electronic mailbox of a Retail Capital sales manager, and personal information may have been compromised.
What was the response? Retail Capital identified the intrusion and reestablished the security of the mailbox. Additional security procedures have been implemented to prevent a similar incident from occurring. All potentially impacted individuals are being notified, and offered free identity theft coverage for two years.
Details: The incident occurred on March 17. Unauthorized access was gained to the electronic mailbox for approximately 40 minutes, during which time the sales manager was locked out. The mailbox contained funding applications and related information provided by applicants in support of their applications. Other employee mailboxes or system resources are not believed to have been compromised.
Quote: “As noted, the intrusion lasted only about 40 minutes, and we have no specific basis to conclude that your personal information has been accessed,” according to a New Hampshire security breach notification.
Source: doj.nh.gov, “Retail Capital, LLC,” April 10, 2015.