IMA Diligence Services has reported a significant data breach affecting over 525,000 individuals, compromising their personal information. This incident was detected in mid-December after a third-party managed legacy server became unavailable.
Discovery and Investigation
According to a statement on the company’s website, law enforcement was immediately alerted, and an investigation was launched to understand the breach’s extent and nature. The company collaborated with external cybersecurity experts to delve deeper into the incident.
The investigation revealed that unauthorized access to the server occurred between December 8 and December 16. During this period, attackers extracted various files containing sensitive information.
Details of Compromised Data
Upon thorough examination, it was found that the stolen data comprised names, addresses, Social Security numbers, and driver’s license numbers of affected individuals. Additionally, financial details such as account numbers and credit card information, along with medical, health insurance, and in certain cases, passport numbers and taxpayer identification numbers, were also compromised.
IMA Diligence Services reported the breach to the Indiana Attorney General, confirming that a total of 525,306 people were impacted. In response, the company is offering 12 months of complimentary credit monitoring and identity restoration services to those affected.
Ransomware Group Involvement
Although the company’s notification did not specify the perpetrators, the Genesis ransomware group reportedly claimed responsibility for the breach. They listed IMA Diligence Services on their Tor-based leak site in late January, alleging the theft of 700 gigabytes of data, including personal and confidential business information.
SecurityWeek has reached out to IMA Diligence Services for additional comments, pending any further updates.
IMA Diligence Services, a part of IMA Financial Group, specializes in financial consulting for mergers, acquisitions, and other corporate dealings. Established in 2009, it was formerly known as RedRidge Diligence Services.
This incident underscores the critical need for robust cybersecurity measures to protect sensitive data against increasingly sophisticated cyber threats.
