Group 1001 update on ransomware attack

On July 28, 2023, Group 1001 issued an update to its stakeholders regarding the ransomware attack that occurred on February 9, 2023, which targeted the company’s information technology infrastructure.

In response to the incident, Group 1001 took immediate action and launched a comprehensive investigation to ascertain the extent of the breach. To aid in the investigation, the company enlisted the assistance of prominent third-party forensic experts. The investigation findings revealed that the threat actor gained access to specific file shares and proceeded to copy a limited amount of information before deploying the ransomware.

Group 1001 emphasized that, to the best of their knowledge, there have been no reports of fraudulent activity involving personal information compromised during the attack.

Over the course of several months following the full recovery of their systems, Group 1001 diligently analyzed the impacted files to assess the potential risks to personal information. As part of their commitment to transparency and safeguarding their stakeholders, the company began notifying individuals whose personal information was confirmed to have been included in the breach. Those affected will receive a letter containing information on how to enroll in the offered services.

To support impacted individuals, Group 1001 is providing a comprehensive identity protection package through IDX, an expert in data breach and recovery services. The package includes credit monitoring services from Experian, Equifax, and TransUnion, as well as CyberScan™ dark web monitoring. Additionally, the package includes identity theft insurance for amounts up to $1,000,000 with no deductible, along with fully-managed identity restoration services. The company will cover the cost of these services for 24 months, ensuring those affected receive necessary support during this challenging period. Any inquiries regarding the identity protection services can be directed to IDX’s U.S.-based call center.

In response to the incident, Group 1001 has taken proactive steps to bolster the security of their network, systems, and data. They have implemented multiple additional measures to prevent similar occurrences in the future, prioritizing the protection of sensitive information and the preservation of their stakeholders’ trust.