Personal Data of Major League Baseball Players Stolen

Personal data belonging to Major League Baseball players and their family members has been stolen in a cyberattack against a third-party vendor.

Consulting firm Horizon Actuarial Services LLC. (Horizon Actuarial), based in Silver Spring, Maryland, was attacked with ransomware in November 2021.

In a recent data incident notice, the company revealed that data from its Local 295 IBT employer group welfare fund and Major League Baseball player benefits plan had been compromised. compromised and plundered by cybercriminals.

The breach was reported by the company as affecting 38,418 people. In a separate report, the Major League Baseball Player Benefits Plan said 13,156 people were affected.

Horizon Actuarial’s first warning that an attack had taken place came when the company was contacted by cybercriminals who claimed to have broken into its computer systems.

“On November 12, 2021, Horizon Actuarial received an email from a group claiming to have stolen copies of personal data from its computer servers,” the notice reads.

To verify the legitimacy of the claims emailed by the gang, Horizon Actuarial launched an investigation with the help of third-party IT specialists. The company also took steps to secure its computer servers and notified law enforcement of the possible attack.

The investigation revealed that two Horizon Actuarial computer servers were accessed without authorization for a limited period on November 10 and 11, 2021.

A list of stolen data was provided by the cybercriminals to Horizon Actuarial, which included names, dates of birth, social security numbers, and health plan information.

Faced with the threat of misuse of stolen data, Horizon Actuarial opened its vaults to the cybercriminal gang.

“During the investigation, Horizon Actuarial negotiated with the group and paid them in return for an agreement that it would delete and not distribute or misuse the stolen information,” the report says. notice.

The company did not disclose how much money it paid to the ransomware gang.

Those whose data was implicated in the attack were notified by mail and offered free fraud and identity theft assistance services as well as credit monitoring by Horizon Actuarial.

“We are reviewing our existing security policies and have implemented additional measures to further protect against similar incidents in the future,” the company said.

Comments are closed.